CVE-2024-6785

MEDIUM Year: 2024
CVSS v3 Score
7.1
High
Weakness Type
CWE-313
View all →

Vulnerability Description

The configuration file stores credentials in cleartext. An attacker with local access rights can read or modify the configuration file, potentially resulting in the service being abused due to sensitive information exposure.

Related Vulnerabilities

CVE-2019-19291

MEDIUM
CVSS:6.5(Medium)

A vulnerability has been identified in Control Center Server (CCS) (All versions < V1.5.0), SiNVR/SiVMS Video Server (All versions < V5.0.0). The FTP services of the SiVMS/SiNVR Video Server and the C...

CWE-3132019

CVE-2016-6546

HIGH
CVSS:7.8(High)

The iTrack Easy mobile application stores the account password used to authenticate to the cloud API in base64-encoding in the cache.db file. The base64 encoding format is considered equivalent to cle...

CWE-3132016

CVE-2016-6547

HIGH
CVSS:7.8(High)

The Zizai Tech Nut mobile app stores the account password used to authenticate to the cloud API in cleartext in the cache.db file.

CWE-3132016

CVE-2024-20448

HIGH
CVSS:8.6(High)

A vulnerability in the Cisco Nexus Dashboard Fabric Controller (NDFC) software, formerly Cisco Data Center Network Manager (DCNM), could allow an attacker with access to a backup file to view sensitiv...

CWE-3132024

CVE-2023-0114

MEDIUM
CVSS:5.5(Medium)

A vulnerability was found in Netis Netcore Router. It has been rated as problematic. Affected by this issue is some unknown functionality of the file param.file.tgz of the component Backup Handler. Th...

CWE-3132023

CVE-2023-2863

MEDIUM
CVSS:5.5(Medium)

A vulnerability has been found in Simple Design Daily Journal 1.012.GP.B on Android and classified as problematic. Affected by this vulnerability is an unknown functionality of the component SQLite Da...

CWE-3132023