Detcon Sitewatch Gateway, all versions without cellular, an attacker can edit settings on the device using a specially crafted URL.
Max CVSS
7.5
EPSS Score
0.08%
Published
2019-04-02
Updated
2019-10-09
A Plaintext Storage of a Password issue was discovered in Moxa OnCell G3110-HSPA Version 1.3 build 15082117 and previous versions, OnCell G3110-HSDPA Version 1.2 Build 09123015 and previous versions, OnCell G3150-HSDPA Version 1.4 Build 11051315 and previous versions, OnCell 5104-HSDPA, OnCell 5104-HSPA, and OnCell 5004-HSPA. The application's configuration file contains parameters that represent passwords in plaintext.
Max CVSS
9.8
EPSS Score
0.21%
Published
2017-05-29
Updated
2019-10-09
In Ice Qube Thermal Management Center versions prior to version 4.13, passwords are stored in plaintext in a file that is accessible without authentication.
Max CVSS
9.8
EPSS Score
0.21%
Published
2018-09-06
Updated
2019-10-09
In the web application in BeaconMedaes TotalAlert Scroll Medical Air Systems running software versions prior to 4107600010.23, passwords are presented in plaintext in a file that is accessible without authentication.
Max CVSS
9.8
EPSS Score
0.21%
Published
2018-06-06
Updated
2019-10-09
In Omron CX-Supervisor Versions 3.30 and prior, access of uninitialized pointer vulnerabilities can be exploited when CX Supervisor indirectly calls an initialized pointer when parsing malformed packets.
Max CVSS
5.3
EPSS Score
0.05%
Published
2018-03-21
Updated
2020-10-02
Echelon SmartServer 1 all versions, SmartServer 2 all versions prior to release 4.11.007, i.LON 100 all versions, and i.LON 600 all versions. The devices store passwords in plaintext, which may allow an attacker with access to the configuration file to log into the SmartServer web user interface.
Max CVSS
9.8
EPSS Score
0.21%
Published
2018-07-24
Updated
2019-10-09
A password management issue exists where the Organization authentication username and password were stored in plaintext in log files. A locally authenticated attacker who is able to access these stored plaintext credentials can use them to login to the Organization. Affected products are: Juniper Networks Service Insight versions from 15.1R1, prior to 18.1R1. Service Now versions from 15.1R1, prior to 18.1R1.
Max CVSS
7.8
EPSS Score
0.04%
Published
2019-04-10
Updated
2020-09-29
An Unprotected Storage of Credentials vulnerability in the identity and access management certificate generation procedure allows a local attacker to gain access to confidential information. This issue affects: Juniper Networks SBR Carrier: 8.4.1 versions prior to 8.4.1R13; 8.5.0 versions prior to 8.5.0R4.
Max CVSS
5.6
EPSS Score
0.04%
Published
2019-10-09
Updated
2019-10-21
Moxa IKS and EDS store plaintext passwords, which may allow sensitive information to be read by someone with access to the device.
Max CVSS
7.5
EPSS Score
0.13%
Published
2019-03-05
Updated
2020-10-19
Jenkins StarTeam Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins Assembla Auth Plugin stores credentials unencrypted in the global config.xml configuration file on the Jenkins master where they can be viewed by users with access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins Relution Enterprise Appstore Publisher Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins Klaros-Testmanagement Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins mabl Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins Diawi Upload Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins Minio Storage Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins DeployHub Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins youtrack-plugin Plugin 0.7.1 and older stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins Jabber Server Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins Netsparker Cloud Scan Plugin 1.1.5 and older stored credentials unencrypted in its global configuration file on the Jenkins master where they could be viewed by users with access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins Kmap Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins crittercism-dsym Plugin stores credentials unencrypted in job config.xml files on the Jenkins master where they can be viewed by users with Extended Read permission, or access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins Serena SRA Deploy Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins Sametime Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
Jenkins Koji Plugin stores credentials unencrypted in its global configuration file on the Jenkins master where they can be viewed by users with access to the master file system.
Max CVSS
8.8
EPSS Score
0.26%
Published
2019-04-04
Updated
2023-10-25
229 vulnerabilities found
1 2 3 4 5 6 7 8 9 10
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!