367 vulnerabilities classified as CWE-522 (不充分的凭证保护机制). AI Chinese analysis included.
| CVE ID | Title | CVSS | Severity | Published |
|---|---|---|---|---|
| CVE-2021-23222 | PostgreSQL 安全漏洞 — postgresql | 5.9 | - | 2022-03-02 |
| CVE-2021-22798 | Schneider Electric Conext™ComBox 安全漏洞 — Conext� ComBox (All Versions) | 7.5 | - | 2022-02-11 |
| CVE-2022-0019 | GlobalProtect App: Insufficiently Protected Credentials Vulnerability on Linux — GlobalProtect App | 4.7 | Medium | 2022-02-10 |
| CVE-2021-44451 | API sensitive information leak — Apache Superset | 6.5 | - | 2022-02-01 |
| CVE-2022-23223 | Apache ShenYu Password leakage — Apache ShenYu (incubating) | 7.5 | - | 2022-01-25 |
| CVE-2021-23196 | Fresenius Kabi Agilia Connect Infusion System insufficiently protected credentials — Agilia Link+ | 7.3 | High | 2022-01-21 |
| CVE-2021-32039 | MongoDB Extension for VS Code may unexpectedly store credentials locally in clear text — MongoDB for VS Code | 5.5 | Medium | 2022-01-20 |
| CVE-2021-42023 | ModelSim Simulation 安全漏洞 — ModelSim Simulation | 5.5 | - | 2021-12-14 |
| CVE-2021-3789 | Binatone Motorola-branded Camera 加密问题漏洞 — Binatone Hubble Cameras | 4.2 | Medium | 2021-11-12 |
| CVE-2021-41972 | Credentials leak — Apache Superset | 6.5 | - | 2021-11-12 |
| CVE-2021-40503 | SAP GUI 信息泄露漏洞 — SAP GUI for Windows | 7.1 | - | 2021-11-10 |
| CVE-2021-41300 | ECOA BAS controller - Insufficiently Protected Credentials-2 — ECS Router Controller ECS (FLASH) | 9.8 | Critical | 2021-09-30 |
| CVE-2021-41297 | ECOA BAS controller - Insufficiently Protected Credentials-1 — ECS Router Controller ECS (FLASH) | 8.8 | High | 2021-09-30 |
| CVE-2021-34733 | Cisco Prime Infrastructure and Cisco Evolved Programmable Network Manager Information Disclosure Vulnerability — Cisco Prime Infrastructure | 5.5 | Medium | 2021-09-02 |
| CVE-2021-34560 | A vulnerability in WirelessHART-Gateway <= 3.0.9 could lead to information exposure of sensitive information — WHA-GW-F2D2-0-AS- Z2-ETH | 5.5 | Medium | 2021-08-31 |
| CVE-2021-35529 | Password in Memory Vulnerability in Retail Operations Product and Counterparty Settlement and Billing (CSB) — Retail Operations | 7.7 | High | 2021-08-20 |
| CVE-2021-27495 | Ypsomed mylife App 安全漏洞 — Ypsomed mylife Cloud, mylife Mobile Application | 9.1 | - | 2021-07-30 |
| CVE-2021-27491 | Ypsomed mylife App 安全漏洞 — Ypsomed mylife Cloud, mylife Mobile Application | 7.5 | - | 2021-07-30 |
| CVE-2021-34700 | Cisco SD-WAN vManage Software Information Disclosure Vulnerability — Cisco SD-WAN vManage | 5.5 | Medium | 2021-07-22 |
| CVE-2021-35965 | Learningdigital.com, Inc. Orca HCM - Hard-code password — Orca HCM | 9.8 | Critical | 2021-07-19 |
| CVE-2021-22781 | Schneider Electric EcoStruxure Control Expert 安全漏洞 — EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Process Expert (all versions, including all versions of EcoStruxure Hybrid DCS), and SCADAPack RemoteConnect for x70, all versions | 5.5 | - | 2021-07-14 |
| CVE-2021-22780 | Schneider Electric EcoStruxure Control Expert 安全漏洞 — EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Process Expert (all versions, including all versions of EcoStruxure Hybrid DCS), and SCADAPack RemoteConnect for x70, all versions | 7.1 | - | 2021-07-14 |
| CVE-2021-22778 | Schneider Electric EcoStruxure Control Expert 安全漏洞 — EcoStruxure Control Expert (all versions prior to V15.0 SP1, including all versions of Unity Pro), EcoStruxure Process Expert (all versions, including all versions of EcoStruxure Hybrid DCS), and SCADAPack RemoteConnect for x70, all versions | 7.1 | - | 2021-07-14 |
| CVE-2021-1537 | Cisco ThousandEyes Recorder Information Disclosure Vulnerability — Cisco ThousandEyes Recorder Application | 6.2 | Medium | 2021-06-04 |
| CVE-2020-27839 | Red Hat Ceph 安全漏洞 — ceph-dashboard | 5.4 | - | 2021-05-26 |
| CVE-2019-25030 | Versa Networks Versa Director 安全漏洞 — Versa Director, Versa Analytics, Versa VOS | 6.5 | - | 2021-05-26 |
| CVE-2021-3528 | Red Hat OpenShift 日志信息泄露漏洞 — NooBaa | 8.8 | - | 2021-05-13 |
| CVE-2021-20997 | WAGO: Managed Switches: Unauthorized access to password hashes — 0852-0303 | 7.5 | High | 2021-05-13 |
| CVE-2021-30167 | MERIT LILIN ENT.CO.,LTD. P2/Z2/P3/Z3 IP camera - Broken Authentication — P2/Z2/P3/Z3 IP camera firmware | 9.8 | Critical | 2021-04-28 |
| CVE-2021-29262 | Misapplied Zookeeper ACLs can result in leakage of configured authentication and authorization settings — Apache Solr | 7.5 | - | 2021-04-13 |
Vulnerabilities classified as CWE-522 (不充分的凭证保护机制) represent 367 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.