Weaknesses of type CWE-522
555 resultsCVE-2026-30796MEDIUMRustDesk Client Transmits Preset Address Book Password Verbatim in Heartbeat SyncEPSS 0.3%CVE-2020-7307MEDIUMDLP for Mac - Unprotected Storage of CredentialsEPSS 0.3%CVE-2019-3938—Crestron AM-100 with firmware 1.6.0.2 and AM-101 with firmware 2.7.0.2 stores usernames, passwords, and other configuration options in the fEPSS 0.3%CVE-2026-41506MEDIUMgo-git Credential leak via cross-host redirect in smart HTTP transportEPSS 0.3%CVE-2025-63361MEDIUMWaveshare RS232/485 TO WIFI ETH (B) Serial to Ethernet/Wi-Fi Gateway Firmware V3.1.1.0: HW 4.3.2.1: Webpage V7.04T.07.002880.0301 was discovEPSS 0.3%CVE-2025-42933HIGHInsecure Storage of Sensitive Information in SAP Business One (SLD)EPSS 0.3%CVE-2024-51240HIGHAn issue in the luci-mod-rpc package in OpenWRT Luci LTS allows for privilege escalation from an admin account to root via the JSON-RPC-API,EPSS 0.3%CVE-2024-24595MEDIUMAllegro AI’s open-source version of ClearML stores passwords in plaintext within the MongoDB instance, resulting in a compromised server leaEPSS 0.3%CVE-2021-34700MEDIUMCisco SD-WAN vManage Software Information Disclosure VulnerabilityEPSS 0.3%CVE-2026-49949MEDIUMCodexBar < 0.33.0 Credential Leakage via HTTP RedirectEPSS 0.3%CVE-2025-14148MEDIUMIBM DevOps Deploy is susceptible to a Insufficiently Protected Credentials vulnerabilityEPSS 0.3%CVE-2026-29872HIGHA cross-session information disclosure vulnerability exists in the awesome-llm-apps project in commit e46690f99c3f08be80a9877fab52acacf7ab82EPSS 0.3%CVE-2025-53743MEDIUMJenkins Applitools Eyes Plugin 1.16.5 and earlier does not mask Applitools API keys displayed on the job configuration form, increasing the EPSS 0.3%CVE-2024-47142MEDIUMAIPHONE IXG SYSTEM IXG-2C7 firmware Ver.2.03 and earlier and IXG-2C7-L firmware Ver.2.03 and earlier contain an issue with insufficiently prEPSS 0.3%CVE-2026-46440HIGHFlowise: Basic Auth Credentials Exposed via APIEPSS 0.3%CVE-2020-7306MEDIUMDLP for Mac - Unprotected Storage of CredentialsEPSS 0.2%CVE-2026-49379MEDIUMIn JetBrains TeamCity before 2026.1 credentials could be exposed in thread namesEPSS 0.2%CVE-2026-44622MEDIUMEVoke Systems EVoke CSMS Insufficiently Protected CredentialsEPSS 0.2%CVE-2021-33107MEDIUMInsufficiently protected credentials in USB provisioning for Intel(R) AMT SDK before version 16.0.3, Intel(R) SCS before version 12.2 and InEPSS 0.2%CVE-2021-47741HIGHZBL EPON ONU Broadband Router V100R001 Privilege Escalation via Configuration EndpointEPSS 0.2%