CWE-312 - Cleartext Storage of Sensitive Information

Description

As sensitive information is stored in cleartext, it is not protected from malicious users' access. Even data made human-unreadable can be easily decoded by attacker having access to the system with the help of certain techiques.
The weakness is introduces during Architecture and Design stage.

Latest vulnerabilities for CWE-312

Multiple vulnerabilities in Electrolink FM/DAB/TV Transmitter 2024-04-17
Medium No

Multiple vulnerabilities in Siemens RUGGEDCOM APE1808 2024-04-15
Medium No

Information disclosure in Junos OS Evolved 2024-04-11
Low Yes

Multiple vulnerabilities in IBM Operations Analytics Predictive Insights 2024-03-28
High Yes

Multiple vulnerabilities in IBM Operations Analytics - Log Analysis 2024-03-20
Medium Yes

Multiple vulnerabilities in IBM Cloud Pak for Multicloud Management 2024-02-29
High Yes

Multiple vulnerabilities in IBM Watson Machine Learning Accelerator on Cloud Pak for Data 2024-02-28
High Yes

Multiple vulnerabilities in NVIDIA DGX Station A100 and DGX Station A800 2024-02-09
High Yes

Information disclosure in Apple Magic Keyboard Firmware 2024-01-11
Low Yes

Multiple vulnerabilities in IBM Observability with Instana (OnPrem) 2023-12-28
High Yes

References

Description of CWE-312 on Mitre website