Falhas do tipo CWE-522
558 resultadosCVE-2021-22778—Insufficiently Protected Credentials vulnerability exists in EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versEPSS 0.2%CVE-2024-44754MEDIUMCryptographic key extraction from internal flash in Minut M2 with firmware version #15142 allows physically proximate attackers to inject moEPSS 0.2%CVE-2022-23725HIGHPingID Windows Login prior to 2.8 does not properly set permissions on the Windows Registry entries used to store sensitive API keys under some circumstancesEPSS 0.2%CVE-2024-38285HIGHInsufficiently Protected Credentials in Motorola Solutions Vigilant Fixed LPR Coms Box (BCAV1F2-C600)EPSS 0.2%CVE-2022-3474MEDIUMBazel leaks user credentials through the remote assets APIEPSS 0.2%CVE-2026-4819MEDIUMSearch Guard audit logs can contain under certain conditions user credentialsEPSS 0.2%CVE-2024-54471MEDIUMThis issue was addressed with additional entitlement checks. This issue is fixed in macOS Sequoia 15.1, macOS Sonoma 14.7.1, macOS Ventura 1EPSS 0.2%CVE-2024-11703MEDIUMOn Android, Firefox may have inadvertently allowed viewing saved passwords without the required device PIN authentication. This vulnerabilitEPSS 0.2%CVE-2021-34560MEDIUMA vulnerability in WirelessHART-Gateway <= 3.0.9 could lead to information exposure of sensitive informationEPSS 0.2%CVE-2021-1537MEDIUMCisco ThousandEyes Recorder Information Disclosure VulnerabilityEPSS 0.2%CVE-2025-69271LOWSpectrum basic authentication in useEPSS 0.2%CVE-2026-55180MEDIUMpnpm: Repository config can expand victim environment secrets into registry requests before scripts runEPSS 0.2%CVE-2025-14790MEDIUMIBM InfoSphere Information Server is vulnerable to disclosure of sensitive informationEPSS 0.2%CVE-2022-0859MEDIUMePO database restoration vulnerabilityEPSS 0.2%CVE-2025-42897MEDIUMInformation Disclosure vulnerability in SAP Business One (SLD)EPSS 0.2%CVE-2026-28909MEDIUMUsers who connect to malicious registries with hostnames matching the bypass patterns will have their registry credentials exposed in plaintEPSS 0.2%CVE-2024-39278MEDIUMHughes Network Systems Insufficiently Protected CredentialsEPSS 0.2%CVE-2024-30119LOWHCL DRYiCE Optibot Reset Station is impacted by a missing Strict Transport Security HeaderEPSS 0.2%CVE-2025-54882HIGHHimmelblau's Kerberos credential cache collection is world readableEPSS 0.2%CVE-2023-46115HIGHUpdater Private Keys Possibly Leaked via Vite Environment Variables in tauri-cliEPSS 0.2%