CVE-2022-44757

HIGH Year: 2022
CVSS v3 Score
8.2
High
Weakness Type
CWE-522
View all →

Vulnerability Description

BigFix Insights for Vulnerability Remediation (IVR) uses weak cryptography that can lead to credential exposure. An attacker could gain access to sensitive information, modify data in unexpected ways, etc.

Related Vulnerabilities

CVE-2024-7755

HIGH
CVSS:8.2(High)

The EWON FLEXY 202 transmits credentials using a weak encoding method base64. An attacker who is present in the network can sniff the traffic and decode the credentials.

CWE-5222024

CVE-2017-1337

HIGH
CVSS:8.1(High)

IBM WebSphere MQ 9.0.1 and 9.0.2 Java/JMS application can incorrectly transmit user credentials in plain text. IBM X-Force ID: 126245.

CWE-5222017

CVE-2017-14418

HIGH
CVSS:8.1(High)

The D-Link NPAPI extension, as used in conjunction with D-Link DIR-850L REV. B (with firmware through FW208WWb02) devices, sends the cleartext admin password over the Internet as part of interaction w...

CWE-5222017

CVE-2017-14711

HIGH
CVSS:8.1(High)

The Kickbase GmbH "Kickbase Bundesliga Manager" app before 2.2.1 -- aka kickbase-bundesliga-manager/id678241305 -- for iOS is vulnerable to a credentials leak due to transmitting a username and passwo...

CWE-5222017

CVE-2017-17691

HIGH
CVSS:8.1(High)

Homeputer CL Studio fur HomeMatic 4.0 Rel 160808 and earlier uses cleartext to exchange the username and password between server and client instances, which allows remote attackers to obtain sensitive...

CWE-5222017

CVE-2017-6528

HIGH
CVSS:8.1(High)

An issue was discovered in dnaTools dnaLIMS 4-2015s13. dnaLIMS is affected by plaintext password storage (the /home/dna/spool/.pfile file).

CWE-5222017