CWE:
 

Sorry. No results for Bugtraq WLB2


CVEMAP Search Results

CVE
Details
Description
2022-05-03
Medium
CVE-2021-46440

Vendor: Strapi
Software: Strapi
 

 
Storing passwords in a recoverable format in the DOCUMENTATION plugin component of Strapi before 3.6.9 and 4.x before 4.1.5 allows an attacker to access a victim's HTTP request, get the victim's cookie, perform a base64 decode on the victim's cookie, and obtain a cleartext password, leading to getting API documentation for further API attacks.

 
2022-03-09
Low
CVE-2022-0881

Vendor: Framasoft
Software: Peertube
 

 
Insecure Storage of Sensitive Information in GitHub repository chocobozzz/peertube prior to 4.1.1.

 
2022-02-23
Low
CVE-2022-0724

Vendor: Microweber
Software: Microweber
 

 
Insecure Storage of Sensitive Information in GitHub repository microweber/microweber prior to 1.3.

 
2022-01-10
Low
CVE-2022-21823

Vendor: Ivanti
Software: Workspace co...
 

 
A insecure storage of sensitive information vulnerability exists in Ivanti Workspace Control <2021.2 (10.7.30.0) that could allow an attacker with locally authenticated low privileges to obtain key information due to an unspecified attack vector.

 
2021-12-08
Low
CVE-2021-25522

Vendor: Samsung
Software: Smart capture
 

 
Insecure storage of sensitive information vulnerability in Smart Capture prior to version 4.8.02.10 allows attacker to access victim's captured images without permission.

 
Low
CVE-2021-25523

Vendor: Samsung
Software: Dialer
 

 
Insecure storage of device information in Samsung Dialer prior to version 12.7.05.24 allows attacker to get Samsung Account ID.

 
Low
CVE-2021-25524

Vendor: Samsung
Software: Contacts
 

 
Insecure storage of device information in Contacts prior to version 12.7.05.24 allows attacker to get Samsung Account ID.

 
2021-11-08
Medium
CVE-2021-42371

Vendor: Xorux
Software: Lpar2rrd
 

 
lpar2rrd is a hardcoded system account in XoruX LPAR2RRD and STOR2RRD before 7.30.

 
2021-11-01
Low
CVE-2021-27004

Vendor: Netapp
Software: Ontap system...
 

 
System Manager 9.x versions 9.7 and higher prior to 9.7P16, 9.8P7 and 9.9.1P2 are susceptible to a vulnerability which could allow a local attacker to discover plaintext iSCSI CHAP credentials.

 
2021-09-23
Low
CVE-2020-4803

Vendor: IBM
Software: Edge applica...
 

 
IBM Edge 4.2 allows web pages to be stored locally which can be read by another user on the system. IBM X-Force ID: 189535.

 

 


Copyright 2022, cxsecurity.com

 

Back to Top