367 vulnerabilities classified as CWE-522 (不充分的凭证保护机制). AI Chinese analysis included.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2021-28171 | Vangene deltaFlow E-platform - Broken Authentication — deltaFlow E-platform | 9.8 | Critical | 2021-04-06 |
| CVE-2021-1392 | Cisco IOS and IOS XE Software Common Industrial Protocol Privilege Escalation Vulnerability — Cisco IOS | 7.8 | High | 2021-03-24 |
| CVE-2019-10225 | Red Hat OpenShift Container Platform 安全漏洞 — atomic-openshift | 8.3 | - | 2021-03-19 |
| CVE-2021-3344 | Red Hat OpenShift Container Platform 安全漏洞 — openshift/builder | 8.8 | - | 2021-03-16 |
| CVE-2021-22681 | Rockwell Automation RSLogix 500 和 Logix Designer Studio 5000 安全漏洞 — Rockwell Automation Studio 5000 Logix Designer, RSLogix 5000, Logix Controllers | 9.8 | - | 2021-03-03 |
| CVE-2020-14391 | Red Hat Enterprise Linux 安全漏洞 — gnome-settings-daemon | 5.5 | - | 2021-02-08 |
| CVE-2020-27258 | 多款Sooil产品信息泄露漏洞 — SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A | 6.5 | - | 2021-01-19 |
| CVE-2021-22132 | Elastic 资源管理错误漏洞 — Elasticsearch | 4.3 | - | 2021-01-14 |
| CVE-2020-28390 | Siemens Opcenter 信息泄露漏洞 — Opcenter Execution Core | 5.5 | - | 2021-01-12 |
| CVE-2020-27781 | OpenStack 安全漏洞 — Ceph | 7.8 | - | 2020-12-18 |
| CVE-2020-25235 | Siemens LOGO! 8 BM 安全漏洞 — LOGO! 8 BM (incl. SIPLUS variants) | 7.5 | - | 2020-12-14 |
| CVE-2020-28219 | Schneider Electric EcoStruxure Geo SCADA Expert 授权问题漏洞 — EcoStruxure Geo SCADA Expert 2019 (Original release and Monthly Updates to September 2020, from 81.7268.1 to 81.7578.1) and EcoStruxure Geo SCADA Expert 2020 (Original release and Monthly Updates to September 2020, from 83.7551.1 to 83.7578.1) | 7.8 | - | 2020-12-11 |
| CVE-2020-8259 | Nextcloud Server 安全漏洞 — Nextcloud Server | 5.5 | - | 2020-11-16 |
| CVE-2020-8152 | Nextcloud 安全漏洞 — Nextcloud Server | 5.5 | - | 2020-11-16 |
| CVE-2020-15157 | containerd can be coerced into leaking credentials during image pull — containerd | 6.1 | Medium | 2020-10-16 |
| CVE-2020-8339 | IBM BladeCenter 跨站脚本漏洞 — BladeCenter AMM firmware | 4.3 | Medium | 2020-09-15 |
| CVE-2020-16097 | Gallagher Group Command Centre 安全漏洞 — Command Centre | 7.3 | High | 2020-09-15 |
| CVE-2020-15791 | Siemens SIMATIC 安全漏洞 — SIMATIC S7-300 CPU family (incl. related ET200 CPUs and SIPLUS variants) | 9.8 | - | 2020-09-09 |
| CVE-2020-7299 | Sensitive Data Exposure vulnerability in McAfee True Key Windows Client — McAfee True Key Windows client | 5.0 | Medium | 2020-09-04 |
| CVE-2020-7307 | DLP for Mac - Unprotected Storage of Credentials — Data Loss Prevention(DLP) | 5.2 | Medium | 2020-08-13 |
| CVE-2020-7306 | DLP for Mac - Unprotected Storage of Credentials — Data Loss Prevention(DLP) | 5.2 | Medium | 2020-08-13 |
| CVE-2020-14334 | Red Hat Satellite 访问控制错误漏洞 — Red Hat Satellite | 7.8 | - | 2020-07-31 |
| CVE-2020-14489 | OpenClinic GA — OpenClinic GA | 6.2 | Medium | 2020-07-29 |
| CVE-2020-10755 | OpenStack openstack-cinder 安全漏洞 — openstack-cinder | 6.5 | Medium | 2020-06-10 |
| CVE-2020-7030 | IPO Information Disclosure — IP Office | 5.5 | Medium | 2020-06-03 |
| CVE-2014-1423 | Online Accounts Signon daemon gives out all oauth tokens to any app — signon | 5.9 | Medium | 2020-05-07 |
| CVE-2020-5406 | PCF Autoscaling logs its database credentials — VMware Tanzu Application Service for VMs | 8.8 | - | 2020-04-10 |
| CVE-2020-5263 | Information disclosure through error object — auth0.js | 5.5 | Medium | 2020-04-09 |
| CVE-2019-5648 | LDAP Credential Exposure in Barracuda Load Balancer ADC — Load Balancer ADC | 7.2 | - | 2020-03-12 |
| CVE-2020-5404 | Authentication Leak On Redirect With Reactor Netty HttpClient — Reactor Netty | 7.1 | - | 2020-03-03 |
Vulnerabilities classified as CWE-522 (不充分的凭证保护机制) represent 367 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.