CWE-549 - Missing Password Field Masking

Description

The software does not mask passwords during entry, increasing the potential for attackers to observe and capture passwords.






Latest vulnerabilities for CWE-549

Multiple vulnerabilities in Mitsubishi Electric MELSEC iQ-R Series/iQ-F Series, EtherNet/IP Modules and EtherNet/IP 2023-06-07
Medium No
Missing Password Field Masking in Jenkins S3 Explorer plugin 2022-10-21
Low No
Multiple vulnerabilities in Jenkins BigPanda Notifier plugin 2022-09-23
Medium No

References

Description of CWE-549 on Mitre website