Weaknesses of type CWE-522
555 resultsCVE-2021-33107MEDIUMInsufficiently protected credentials in USB provisioning for Intel(R) AMT SDK before version 16.0.3, Intel(R) SCS before version 12.2 and InEPSS 0.2%CVE-2026-33575HIGHOpenClaw < 2026.3.12 - Long-lived Credential Exposure in Pairing Setup CodesEPSS 0.2%CVE-2019-10139MEDIUMDuring HE deployment via cockpit-ovirt, cockpit-ovirt generates an ansible variable file `/var/lib/ovirt-hosted-engine-setup/cockpit/ansibleEPSS 0.2%CVE-2026-0393MEDIUMCODESYS Visualization - Insufficiently Protected CredentialsEPSS 0.2%CVE-2026-27777MEDIUMMobiliti e-mobi.hu Insufficiently Protected CredentialsEPSS 0.2%CVE-2025-52545HIGHPrivilege escalation in the application servicesEPSS 0.2%CVE-2025-53008MEDIUMGLPI's MailCollector Receiver is vulnerable to credential exfiltrationEPSS 0.2%CVE-2023-50436MEDIUMAn issue was discovered in Couchbase Server before 7.2.4. ns_server admin credentials are leaked in encoded form in the diag.log file. The eEPSS 0.2%CVE-2021-3681—A flaw was found in Ansible Galaxy Collections. When collections are built manually, any files in the repository directory that are not explEPSS 0.2%CVE-2022-33954MEDIUMIBM Robotic Process Automation information disclosureEPSS 0.2%CVE-2021-22781—Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versEPSS 0.2%CVE-2023-6259HIGHLocal Access to Sensitive Data in Brivo ACS100 and ACS300 EPSS 0.2%CVE-2026-35467HIGHPrivate Key stored as extractable in browser IndexeDBEPSS 0.2%CVE-2025-54467MEDIUMNeuVector process with sensitive arguments lead to leakageEPSS 0.2%CVE-2026-6345MEDIUMPrevent password disclosure and force reset during Slack importEPSS 0.2%CVE-2026-23927MEDIUMAgent 2 Oracle plugin TNS connection string injection via the 'service' parameterEPSS 0.2%CVE-2025-12636HIGHUbia UboxEPSS 0.2%CVE-2026-6446MEDIUMMy Social Feeds <= 1.0.4 - Missing Authorization to Unauthenticated Sensitive Information Exposure via 'ttp_get_accounts' AJAX ActionEPSS 0.2%CVE-2016-15014LOWCESNET theme-cesnet resetpassword.php insufficiently protected credentialsEPSS 0.2%CVE-2025-37728MEDIUMKibana Insufficiently Protected Credentials in the CrowdStrike ConnectorEPSS 0.2%