Threats Tagged 'cwe-538'
View all threats tagged with 'cwe-538'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cwe-538'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-50099: CWE-538 Insertion of sensitive information into Externally-Accessible file or directory in Naxclow Smart Doorbell X3CVE-2026-50099 0 During WiFi association, Naxclow device firmware prints the host network’s SSID, PSK, and negotiated WPA keys in cleartext to an exposed UART console on production hardware. The UART pads are labeled, run with default serial settings, and drop to an interactive RT-Thread shell that permits arbitrary memory reads, enabling full firmware extraction. An attacker with brief physical access, common for outdoor-mounted devices, can therefore recover WiFi credentials and bootstrap firmware-side attacks. Join the discussion | CVE Database V5 | 06/12/2026, 18:24:14 UTC Added: 06/12/2026, 18:55:14 UTC |
CVE-2026-29114: CWE-538 Insertion of sensitive information into Externally-Accessible file or directory in Dahua IPCCVE-2026-29114 0 A vulnerability has been found in some Dahua products. An attacker may obtain the device’s CA root certificate. If that CA is installed and trusted on client systems, the attacker could issue fraudulent certificates trusted by those clients and undermine the certificate trust chain. Join the discussion | CVE Database V5 | 06/10/2026, 05:44:50 UTC Added: 06/10/2026, 06:41:08 UTC |
CVE-2026-49298: CWE-538: Insertion of Sensitive Information into Externally-Accessible File or Directory in Apache Software Foundation Apache AirflowCVE-2026-49298 0 A bug in Apache Airflow's KubernetesExecutor caused JWT tokens used by worker pods to authenticate against the Execution API to be passed to the worker container as command-line arguments visible in the pod spec. An authenticated UI/API user with Kubernetes read-only access to the cluster (e.g. `pods/get` in the Airflow namespace) could harvest the JWT from `kubectl describe pod` output and then call state-mutating Execution API endpoints — triggering Dag runs, clearing runs, reading or writing Variables / Connections / XComs — as if they were a running task. Affects deployments using the `KubernetesExecutor`. Users are advised to upgrade to `apache-airflow` 3.2.2 or later. This is the airflow-core half of the same vulnerability addressed by [CVE-2026-27173](https://www.cve.org/CVERecord?id=CVE-2026-27173), which shipped the apache-airflow-providers-cncf-kubernetes side of the fix. Deployments that already upgraded `apache-airflow-providers-cncf-kubernetes` to 10.17.0 or later per the CVE-2026-27173 advisory should additionally upgrade `apache-airflow` to 3.2.2 or later to close the core-side surface — the two fixes are complementary, not duplicates. Join the discussion | CVE Database V5 | 06/01/2026, 07:34:32 UTC Added: 06/01/2026, 09:18:49 UTC |
Showing 1 to 3 of 3 results