WebAug 20, 2024 · Insufficiently Protected Credentials - (522) Improper Restriction of XML External Entity Reference - (611) Use of Hard-coded Credentials - (798) Deserialization of Untrusted Data - (502) Improper Privilege Management - (269) Uncontrolled Resource Consumption - (400) Missing Authentication for Critical Function - (306) Missing … WebCWE-523: Unprotected Transport of Credentials Weakness ID: 523 Abstraction: Base Structure: Simple View customized information: ConceptualOperationalMapping …
NVD - CVE-2024-25413
WebMar 3, 2024 · Rockwell Automation Studio 5000 Logix Designer Versions 21 and later, and RSLogix 5000 Versions 16 through 20 use a key to verify Logix controllers are … WebDescription Aten PE8108 2.4.232 is vulnerable to Incorrect Access Control. The device allows unauthenticated access to Telnet and SNMP credentials. Severity CVSS Version 3.x CVSS Version 2.0 CVSS 3.x Severity and Metrics: NIST: NVD Base Score: 7.5 HIGH Vector: CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N good names for black puppies
CWE - CWE-522: Insufficiently Protected Credentials (4.9)
WebOct 29, 2024 · Insufficiently Protected Credentials in Requests High severity GitHub Reviewed Published Oct 29, 2024 to the GitHub Advisory Database • Updated Feb 1, … WebCWE-522 (Insufficiently Protected Credentials): from #21 to #38; CWE-732 (Incorrect Permission Assignment for Critical Resource): from #22 to #30; Below is a visual … WebJul 25, 2024 · The Requests package before 2.20.0 for Python sends an HTTP Authorization header to an http URI upon receiving a same-hostname https-to-http redirect, which makes it easier for remote attackers to discover credentials by sniffing the network. View Analysis Description Severity CVSS Version 3.x CVSS Version 2.0 good names for black panthers