CVEbaza.plSłownik CWECWE-257
Common Weakness Enumeration

CWE-257

Storing Passwords in a Recoverable Format

Kategoria: BaseCVE: 64
Opis

Przechowywanie haseł w formacie możliwym do odzyskania narażają je na ataki polegające na ponownym użyciu haseł przez złośliwych użytkowników. Zaszyfrowane hasła możliwe do odzyskania nie zapewniają istotnych korzyści w stosunku do haseł w postaci zwykłego tekstu, ponieważ są podatne na ponowne użycie przez atakujących.

Description (EN)

The storage of passwords in a recoverable format makes them subject to password reuse attacks by malicious users. In fact, it should be noted that recoverable encrypted passwords provide no significant benefit over plaintext passwords since they are subject not only to reuse by malicious attackers but also by malicious insiders. If a system administrator can recover a password directly, or use a brute force search on the available information, the administrator can use the password on other accounts.

Podatności CVE z CWE-257 (64)
9.1
CVSS
CRITICAL
CVE-2025-8095

Mechanizm kodowania OECH1 stosowany w platformie Progress OpenEdge jest kryptograficznie słaby i nieodpowiedni do przechowywania haseł oraz tajnych wartości w środowiskach produkcyjnych. Dane zakodowane z użyciem OECH1 należy traktować jako podatne na ujawnienie.

pub. 2026-04-14
9.0
CVSS
CRITICAL
CVE-2025-8904

Amazon EMR Secret Agent zapisuje plik keytab zawierający dane uwierzytelniające Kerberos w katalogu /tmp/, który może być dostępny dla innych użytkowników systemu. Podatność pozwala na odszyfrowanie kluczy Kerberos i eskalację uprawnień do wyższego poziomu dostępu.

pub. 2025-08-13
8.6
CVSS
HIGH
CVE-2016-15058

Hirschmann HiLCOS Classic Platform switches Classic L2E, L2P, L3E, L3P versions prior to 09.0.06 and Classic L2B prior to 05.3.07 contain a credential exposure vulnerability where user passwords are synchronized with SNMPv1/v2 community strings and transmitted in plaintext when the feature is enabled. Attackers with local network access can sniff SNMP traffic or extract configuration data to recover plaintext credentials and gain unauthorized administrative access to the switches.

pub. 2026-04-03
8.4
CVSS
HIGH
CVE-2025-34180

NetSupport Manager < 14.12.0001 relies on a shared Gateway Key for authentication between Manager/Control, Client, and Connectivity Server components. The key is stored using a reversible encoding scheme. An attacker who obtains access to a deployed client configuration file can decode the stored value to recover the plaintext Gateway Key. Possession of the Gateway Key allows unauthorized access to NetSupport Manager connectivity services and enables remote control of systems managed through the same key.

pub. 2025-12-15
8.4
CVSS
HIGH
CVE-2025-6995

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated attacker to decrypt other users’ passwords.

pub. 2025-07-08
8.4
CVSS
HIGH
CVE-2025-6996

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated attacker to decrypt other users’ passwords.

pub. 2025-07-08
8.2
CVSS
HIGH
CVE-2026-30785

Improperly Controlled Modification of Object Prototype Attributes ('Prototype Pollution'), Use of Password Hash With Insufficient Computational Effort vulnerability in rustdesk-client RustDesk Client rustdesk, hbb_common on Windows, MacOS, Linux (Password security module, config encryption, machine UID modules) allows Retrieve Embedded Sensitive Data. This vulnerability is associated with program files hbb_common/src/password_security.Rs, hbb_common/src/config.Rs, hbb_common/src/lib.Rs (get_uuid), machine-uid/src/lib.Rs and program routines symmetric_crypt(), encrypt_str_or_original(), decrypt_str_or_original(), get_uuid(), get_machine_id(). This issue affects RustDesk Client: through 1.4.5.

pub. 2026-03-05
8.1
CVSS
HIGH
CVE-2022-34838

Storing Passwords in a Recoverable Format vulnerability in ABB Zenon 8.20 allows an attacker who successfully exploit the vulnerability may add or alter data points and corresponding attributes. Once such engineering data is used the data visualization will be altered for the end user.

pub. 2022-08-24
8.0
CVSS
HIGH
CVE-2023-31150

A Storing Passwords in a Recoverable Format vulnerability in the Schweitzer Engineering Laboratories Real-Time Automation Controller (SEL RTAC) database system could allow an authenticated attacker to retrieve passwords. See SEL Service Bulletin dated 2022-11-15 for more details.

pub. 2023-05-10
8.0
CVSS
HIGH
CVE-2022-32519

A CWE-257: Storing Passwords in a Recoverable Format vulnerability exists that could result in unwanted access to a DCE instance when performed over a network by a malicious third-party. Affected Products: Data Center Expert (Versions prior to V7.9.0)

pub. 2023-01-30
7.8
CVSS
HIGH
CVE-2023-21726

Windows Credential Manager User Interface Elevation of Privilege Vulnerability

pub. 2023-01-10
7.8
CVSS
HIGH
CVE-2022-22251

On cSRX Series devices software permission issues in the container filesystem and stored files combined with storing passwords in a recoverable format in Juniper Networks Junos OS allows a local, low-privileged attacker to elevate their permissions to take control of any instance of a cSRX software deployment. This issue affects Juniper Networks Junos OS 20.2 version 20.2R1 and later versions prior to 21.2R1 on cSRX Series.

pub. 2022-10-18
7.8
CVSS
HIGH
CVE-2017-9942

A vulnerability was discovered in Siemens SiPass integrated (All versions before V2.70) that could allow an attacker with local access to the SiPass integrated server or SiPass integrated client to potentially obtain credentials from the systems.

pub. 2017-08-08
7.7
CVSS
HIGH
CVE-2024-8774

The SIMPLE.ERP client stores superuser password in a recoverable format, allowing any authenticated SIMPLE.ERP user to escalate privileges to a database administrator. This issue affect SIMPLE.ERP from 6.20 through 6.30. Only the 6.30 version received a patch 6.30@a03.9, which removed the vulnerability. Versions 6.20 and 6.25 remain unpatched.

pub. 2025-03-24
7.5
CVSS
HIGH
CVE-2026-20128

A vulnerability in the Data Collection Agent (DCA) feature of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to gain DCA user privileges on an affected system. This vulnerability is due to the presence of a credential file for the DCA user on an affected system. An attacker could exploit this vulnerability by sending a crafted HTTP request and reading the file that contains the DCA password from that affected system. A successful exploit could allow the attacker to access another affected system and gain DCA user privileges. Note: Cisco Catalyst SD-WAN Manager releases 20.18 and later are not affected by this vulnerability.

pub. 2026-02-25🚩 CISA KEV⚡ EXPLOIT
7.5
CVSS
HIGH
CVE-2025-0280

A security vulnerability in HCL Compass can allow attacker to gain unauthorized database access.

pub. 2025-09-03
7.5
CVSS
HIGH
CVE-2024-1480

Unitronics Vision Standard line of controllers allow the Information Mode password to be retrieved without authentication.

pub. 2024-04-19
7.5
CVSS
HIGH
CVE-2023-5627

A vulnerability has been identified in NPort 6000 Series, making the authentication mechanism vulnerable. This vulnerability arises from the incorrect implementation of sensitive information protection, potentially allowing malicious users to gain unauthorized access to the web service.

pub. 2023-11-01
7.5
CVSS
HIGH
CVE-2021-27485

ZOLL Defibrillator Dashboard, v prior to 2.2,The application allows users to store their passwords in a recoverable format, which could allow an attacker to retrieve the credentials from the web browser.

pub. 2021-06-16
7.3
CVSS
HIGH
CVE-2022-47376

The Alaris Infusion Central software, versions 1.1 to 1.3.2, may contain a recoverable password after the installation. No patient health data is stored in the database, although some site installations may choose to store personal data.

pub. 2023-06-13
Pokazano 20 z 64 podatności
Informacje
ID: CWE-257
Typ: Base
Podatności: 64
MITRE CWE ↗
← Słownik CWE