Fallos del tipo CWE-312
407 resultadosCVE-2025-2189MEDIUMInformation Disclosure Vulnerability in Tinxy Smart DevicesEPSS 0.1%CVE-2024-53979HIGHAnsible collection "ibm.ibm_zhmc" has passwords in clear text in log file and in output of some modules when specified as inputEPSS 0.1%CVE-2024-50570MEDIUMA Cleartext Storage of Sensitive Information vulnerability [CWE-312] in FortiClientWindows 7.4.0 through 7.4.1, 7.2.0 through 7.2.6, 7.0.0 tEPSS 0.1%CVE-2025-0418MEDIUMValmet DNA user passwords in plain textEPSS 0.1%CVE-2024-36119LOWPassword confirmation stored in plain text via registration form in statamic/cmsEPSS 0.1%CVE-2022-42931LOWLogins saved by Firefox should be managed by the Password Manager component which uses encryption to save files on-disk. Instead, the usernaEPSS 0.1%CVE-2023-26593HIGHCENTUM series provided by Yokogawa Electric Corporation are vulnerable to cleartext storage of sensitive information. If an attacker who canEPSS 0.1%CVE-2024-53865HIGHPython package "zhmcclient" has passwords in clear text in its HMC and API logsEPSS 0.1%CVE-2025-6224MEDIUMKey leakage in juju/utils certificatesEPSS 0.1%CVE-2025-67638MEDIUMJenkins 2.540 and earlier, LTS 2.528.2 and earlier does not mask build authorization tokens displayed on the job configuration form, increasEPSS 0.1%CVE-2024-56428MEDIUMThe local iLabClient database in itech iLabClient 3.7.1 allows local attackers to read cleartext credentials (from the CONFIGS table) for thEPSS 0.1%CVE-2026-4387LOWUnencrypted storage of authentication state in StrongDM Desktop Application state.kv fileEPSS 0.1%CVE-2022-2569MEDIUMARC Informatique PcVueEPSS 0.1%CVE-2025-47820LOWFlock Safety Gunshot Detection devices before 1.3 have cleartext storage of code.EPSS 0.1%CVE-2025-53670MEDIUMJenkins Nouvola DiveCloud Plugin 1.08 and earlier stores DiveCloud API Keys and Credentials Encryption Keys unencrypted in job config.xml fiEPSS 0.1%CVE-2023-24964MEDIUMIBM InfoSphere Information Server information disclosureEPSS 0.1%CVE-2022-31697MEDIUMThe vCenter Server contains an information disclosure vulnerability due to the logging of credentials in plaintext. A malicious actor with aEPSS 0.1%CVE-2020-10706MEDIUMA flaw was found in OpenShift Container Platform where OAuth tokens are not encrypted when the encryption of data at rest is enabled. This fEPSS 0.1%CVE-2022-48310MEDIUMAn information disclosure vulnerability allows sensitive key material to be included in technical support archives in Sophos Connect versionEPSS 0.1%CVE-2024-10523MEDIUMInformation Disclosure Vulnerability in TP-Link IoT Smart HubEPSS 0.1%