EUVD-2009-0647

Malware in sbrugna...

CVE-2019-5627

The iOS mobile application BlueCats Reveal before 5.14 stores the username and password in the app cache as base64 encoded strings, i.e. clear text. These persist in the cache even if the user logs out. This can allow an attacker to compromise the affected BlueCats network implementation. The...

PT-2022-16247 · Check Point · Check Point Ipsec Vpn Blade

Name of the Vulnerable Software and Affected Versions: Check Point IPsec VPN blade affected versions not specified Description: The issue concerns a brute-force attack vulnerability when the IPsec VPN blade's portal is configured for username/password authentication, allowing attackers to target...

U.S. Dept Of Defense: Multiple cryptographic vulnerabilities in login page on ███████

Summary: I realize that this report's title may not make sense yet. In one sentence: users logging in to the ███████ Server REST API Login page can have their passwords stolen by an attacker on the same LAN or WiFi as the victim trying to log in. Description: To save the reader any confusion, I'l...

CVE-2002-0344

Symantec LiveUpdate 1.5 and earlier in Norton Antivirus stores usernames and passwords for a local LiveUpdate server in cleartext in the registry, which may allow remote attackers to impersonate the LiveUpdate server...