Common Weakness Enumeration

CWE-260

Allowed

Password in Configuration File

Abstraction: Base · Status: Incomplete

The product stores a password in a configuration file that might be accessible to actors who do not know the password.

42 vulnerabilities reference this CWE, most recent first.

GHSA-VQF5-JVFH-997C

Vulnerability from github – Published: 2025-12-09 21:31 – Updated: 2025-12-10 18:30
VLAI
Details

Tinycontrol LAN Controller v3 LK3 version 1.58a contains an unauthenticated vulnerability that allows remote attackers to download configuration backup files containing sensitive credentials. Attackers can retrieve the lk3_settings.bin file and extract base64-encoded user and admin passwords without authentication.

Show details on source website

{
  "affected": [],
  "aliases": [
    "CVE-2023-53739"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-260"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2025-12-09T21:15:51Z",
    "severity": "CRITICAL"
  },
  "details": "Tinycontrol LAN Controller v3 LK3 version 1.58a contains an unauthenticated vulnerability that allows remote attackers to download configuration backup files containing sensitive credentials. Attackers can retrieve the lk3_settings.bin file and extract base64-encoded user and admin passwords without authentication.",
  "id": "GHSA-vqf5-jvfh-997c",
  "modified": "2025-12-10T18:30:25Z",
  "published": "2025-12-09T21:31:49Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2023-53739"
    },
    {
      "type": "WEB",
      "url": "https://www.exploit-db.com/exploits/51731"
    },
    {
      "type": "WEB",
      "url": "https://www.tinycontrol.pl"
    },
    {
      "type": "WEB",
      "url": "https://www.vulncheck.com/advisories/tinycontrol-lan-controller-v-lk-a-unauthenticated-configuration-backup-disclosure"
    },
    {
      "type": "WEB",
      "url": "https://www.vulncheck.com/advisories/tinycontrol-lan-controller-v3-lk3-unauthenticated-configuration-backup-disclosure"
    },
    {
      "type": "WEB",
      "url": "https://www.zeroscience.mk/en/vulnerabilities/ZSL-2023-5786.php"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:N/SC:H/SI:H/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
      "type": "CVSS_V4"
    }
  ]
}

GHSA-WPG8-55X8-H7HR

Vulnerability from github – Published: 2026-03-11 21:31 – Updated: 2026-03-12 00:31
VLAI
Details

Hisilicon HiIpcam V100R003 contains a directory traversal vulnerability that allows unauthenticated attackers to access sensitive configuration files by exploiting directory listing in the cgi-bin directory. Attackers can request the getadslattr.cgi endpoint to retrieve ADSL credentials and network configuration parameters including usernames, passwords, and DNS settings.

Show details on source website

{
  "affected": [],
  "aliases": [
    "CVE-2019-25465"
  ],
  "database_specific": {
    "cwe_ids": [
      "CWE-260"
    ],
    "github_reviewed": false,
    "github_reviewed_at": null,
    "nvd_published_at": "2026-03-11T19:15:59Z",
    "severity": "HIGH"
  },
  "details": "Hisilicon HiIpcam V100R003 contains a directory traversal vulnerability that allows unauthenticated attackers to access sensitive configuration files by exploiting directory listing in the cgi-bin directory. Attackers can request the getadslattr.cgi endpoint to retrieve ADSL credentials and network configuration parameters including usernames, passwords, and DNS settings.",
  "id": "GHSA-wpg8-55x8-h7hr",
  "modified": "2026-03-12T00:31:16Z",
  "published": "2026-03-11T21:31:01Z",
  "references": [
    {
      "type": "ADVISORY",
      "url": "https://nvd.nist.gov/vuln/detail/CVE-2019-25465"
    },
    {
      "type": "WEB",
      "url": "https://www.exploit-db.com/exploits/47405"
    },
    {
      "type": "WEB",
      "url": "https://www.vulncheck.com/advisories/hisilicon-hiipcam-v100r003-information-disclosure-via-directory-traversal"
    },
    {
      "type": "WEB",
      "url": "https://www.vulncheck.com/advisories/hisilicon-hiipcam-vr-information-disclosure-via-directory-traversal"
    }
  ],
  "schema_version": "1.4.0",
  "severity": [
    {
      "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
      "type": "CVSS_V3"
    },
    {
      "score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:N/VA:N/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
      "type": "CVSS_V4"
    }
  ]
}

Mitigation
Architecture and Design

Avoid storing passwords in easily accessible locations.

Mitigation
Architecture and Design

Consider storing cryptographic hashes of passwords as an alternative to storing in plaintext.

No CAPEC attack patterns related to this CWE.