Description
Obscuring a password with a trivial encoding does not protect the password.
Extended Description
Password management issues occur when a password is stored in plaintext in an application's properties or configuration file. A programmer can attempt to remedy the password management problem by obscuring the password with an encoding function, such as base 64 encoding, but this effort does not adequately protect the password.
CVE vulnerabilities with CWE-261 (40)
9.8
CVSS
CRITICAL
CVE-2020-10275
pub. 2020-06-24
9.8
CVSS
CRITICAL
CVE-2017-7905
pub. 2017-06-30
9.1
CVSS
CRITICAL
CVE-2025-31229
pub. 2025-07-30
8.8
CVSS
HIGH
CVE-2024-45394
pub. 2024-09-03
8.8
CVSS
HIGH
CVE-2024-24279
pub. 2024-04-08
8.8
CVSS
HIGH
CVE-2021-21507
pub. 2021-04-30
8.7
CVSS
HIGH
CVE-2025-11500
pub. 2026-03-16
8.4
CVSS
HIGH
CVE-2024-45273
pub. 2024-10-15
8.2
CVSS
HIGH
CVE-2024-7407
pub. 2025-03-28
8.1
CVSS
HIGH
CVE-2024-8455
pub. 2024-09-30
8.1
CVSS
HIGH
CVE-2024-28270
pub. 2024-04-08
7.8
CVSS
HIGH
CVE-2022-45099
pub. 2023-02-01
7.8
CVSS
HIGH
CVE-2020-14481
pub. 2022-02-24
7.5
CVSS
HIGH
CVE-2023-0525
pub. 2023-08-04
7.5
CVSS
HIGH
CVE-2022-38469
pub. 2023-01-18
7.1
CVSS
HIGH
CVE-2024-0556
pub. 2024-01-16
6.9
CVSS
MEDIUM
CVE-2026-22543
pub. 2026-01-07
6.9
CVSS
MEDIUM
CVE-2025-2862
pub. 2025-03-28
6.9
CVSS
MEDIUM
CVE-2024-34542
pub. 2024-09-27
6.9
CVSS
MEDIUM
CVE-2024-5434
pub. 2024-05-28
Showing 20 of 40 vulnerabilities