Weaknesses of type CWE-922
278 resultsCVE-2024-43694MEDIUMgoTenna Pro ATAK Plugin Insecure Storage of Sensitive InformationEPSS 0.1%CVE-2023-40093MEDIUMIn multiple files, there is a possible way that trimmed content could be included in PDF output due to a logic error in the code. This couldEPSS 0.1%CVE-2025-37110MEDIUMSensitive Credential Information stored insecurely in System DatabaseEPSS 0.1%CVE-2025-42979MEDIUMInsecure Key & Secret Management vulnerability in SAP GUI for WindowsEPSS 0.1%CVE-2025-14376HIGHVerve Asset Manager – Plaintext Storage VulnerabilitiesEPSS 0.1%CVE-2023-6460MEDIUMInformation leak in nodejs-firestoreEPSS 0.1%CVE-2024-0037LOWIn applyCustomDescription of SaveUi.java, there is a possible way to view images belonging to a different user due to a missing permission cEPSS 0.1%CVE-2026-20629MEDIUMA privacy issue was addressed with improved handling of temporary files. This issue is fixed in macOS Tahoe 26.3. An app may be able to acceEPSS 0.1%CVE-2024-34721MEDIUMIn ensureFileColumns of MediaProvider.java, there is a possible disclosure of files owned by another user due to improper input validation. EPSS 0.1%CVE-2026-7257MEDIUM** UNSUPPORTED WHEN ASSIGNED ** An insecure storage of sensitive information vulnerability in the configuration file of Zyxel WRE6505 v2 firEPSS 0.1%CVE-2023-43630HIGHConfig Partition Not Measured From 2 FrontsEPSS 0.1%CVE-2025-32746MEDIUMDell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Insecure Storage of Sensitive Information vulnerability. An unauthenticated attackEPSS 0.1%CVE-2025-32751MEDIUMDell PowerFlex Manager, version(s) <=4.6.2, contain(s) an Insecure Storage of Sensitive Information vulnerability. A low privileged attackerEPSS 0.1%CVE-2024-20050MEDIUMIn flashc, there is a possible information disclosure due to an uncaught exception. This could lead to local information disclosure with SysEPSS 0.1%CVE-2025-10971HIGHInsecure Storage of Sensitive InformationEPSS 0.1%CVE-2024-27232MEDIUMIn asn1_ec_pkey_parse of asn1_common.c, there is a possible OOB read due to a missing null check. This could lead to local information disclEPSS 0.1%CVE-2023-52345MEDIUMIn modem driver, there is a possible system crash due to improper input validation. This could lead to local information disclosure with SysEPSS 0.1%CVE-2025-35054MEDIUMNewforma Info Exchange (NIX) insufficiently protected credentialsEPSS 0.1%