CVE-2023-40724

HIGH Year: 2023
CVSS v3 Score
7.3
High
Weakness Type
CWE-316
View all →

Vulnerability Description

A vulnerability has been identified in QMS Automotive (All versions < V12.39). User credentials are found in memory as plaintext. An attacker could perform a memory dump, and get access to credentials, and use it for impersonation.

Related Vulnerabilities

CVE-2023-3762

HIGH
CVSS:7.5(High)

A vulnerability was found in Intergard SGS 8.7.0. It has been classified as problematic. This affects an unknown part. The manipulation leads to cleartext storage of sensitive information in memory. I...

CWE-3162023

CVE-2024-39732

HIGH
CVSS:7.5(High)

IBM Datacap Navigator 9.1.5, 9.1.6, 9.1.7, 9.1.8, and 9.1.9 temporarily stores data from different environments that could be obtained by a malicious user. IBM X-Force ID: 295791.

CWE-3162024

CVE-2024-25649

MEDIUM
CVSS:6.7(Medium)

In Delinea PAM Secret Server 11.4, it is possible for an attacker (with Administrator access to the Secret Server machine) to read the following data from a memory dump: the decrypted master key, data...

CWE-3162024

CVE-2022-29832

MEDIUM
CVSS:6.5(Medium)

Cleartext Storage of Sensitive Information in Memory vulnerability in Mitsubishi Electric Corporation GX Works3 versions 1.015R and later, GX Works2 all versions and GX Developer versions 8.40S and la...

CWE-3162022

CVE-2024-33900

MEDIUM
CVSS:6.5(Medium)

KeePassXC 2.7.7 allows an attacker (who has the privileges of the victim) to recover cleartext credentials via a memory dump. NOTE: the vendor disputes this because memory-management constraints make ...

CWE-3162024

CVE-2024-33901

MEDIUM
CVSS:6.5(Medium)

Issue in KeePassXC 2.7.7 allows an attacker (who has the privileges of the victim) to recover some passwords stored in the .kdbx database via a memory dump. NOTE: the vendor disputes this because memo...

CWE-3162024