CVE-2024-3082

MEDIUM Year: 2024
CVSS v3 Score
4.6
Medium
Weakness Type
CWE-256
View all →

Vulnerability Description

A “CWE-256: Plaintext Storage of a Password” affecting the administrative account allows an attacker with physical access to the machine to retrieve the password in cleartext unless specific security measures at other layers (e.g., full-disk encryption) have been enabled.

Related Vulnerabilities

CVE-2024-39922

MEDIUM
CVSS:4.6(Medium)

A vulnerability has been identified in LOGO! 12/24RCE (6ED1052-1MD08-0BA1) (All versions), LOGO! 12/24RCEo (6ED1052-2MD08-0BA1) (All versions), LOGO! 230RCE (6ED1052-1FB08-0BA1) (All versions), LOGO! ...

CWE-2562024

CVE-2023-50956

MEDIUM
CVSS:4.4(Medium)

IBM Storage Defender - Resiliency Service 2.0.0 through 2.0.9 could allow a privileged user to obtain highly sensitive user credentials from secret keys that are stored in clear text.

CWE-2562023

CVE-2024-25052

MEDIUM
CVSS:4.4(Medium)

IBM Jazz Reporting Service 7.0.3 stores user credentials in plain clear text which can be read by an admin user. IBM X-Force ID: 283363.

CWE-2562024

CVE-2024-37135

MEDIUM
CVSS:4.4(Medium)

DM5500 5.16.0.0, contains an information disclosure vulnerability. A local attacker with high privileges could potentially exploit this vulnerability, leading to the disclosure of certain user credent...

CWE-2562024

CVE-2025-21102

MEDIUM
CVSS:4.4(Medium)

Dell VxRail, versions 7.0.000 through 7.0.532, contain(s) a Plaintext Storage of a Password vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, le...

CWE-2562025

CVE-2025-21111

MEDIUM
CVSS:4.4(Medium)

Dell VxRail, versions 8.0.000 through 8.0.311, contain(s) a Plaintext Storage of a Password vulnerability. A high privileged attacker with local access could potentially exploit this vulnerability, le...

CWE-2562025