CVE-2023-6518
7.5 HIGHPlaintext Storage of a Password vulnerability in Mia Technology Inc
Published: 2024-02-08 · Last updated: 2026-05-20
Severity and scoring
- CVSS
- 7.5 HIGH
- Vector
- CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
- CWE
- CWE-256
Affected products
| Vendor | Product |
|---|---|
| miateknoloji | mia-med |
Description
Plaintext Storage of a Password vulnerability in Mia Technology Inc. MİA-MED allows Read Sensitive Strings Within an Executable. This issue affects MİA-MED: before 1.0.7.
Source: NVD
References
Related CVEs
Same vendor
- CVE-2023-6519 — Exposure of Data Element to Wrong Session vulnerability in Mia Technology Inc (7.5 HIGH)
- CVE-2023-6517 — Exposure of Sensitive Information Due to Incompatible Policies vulnerability in Mia Technology Inc (7.5 HIGH)
- CVE-2023-6515 — Authorization Bypass Through User-Controlled Key vulnerability in Mia Technology Inc (8.8 HIGH)
- CVE-2022-3760 — Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') vulnerability in Mia Technology Mia-Med (9.8 CRITICAL)
Same CWE
- CVE-2024-45636 — IBM Security QRadar EDR 3.12 through 3.12.24 stores user credentials in plain text which can be read by a local privileged user (4.1 MEDIUM)
- CVE-2026-36174 — GNCC GP5 v7.1.76 was discovered to store sensitive wireless network information in plaintext during routine operations to the serial console (4.6 MEDIUM)
- CVE-2018-25396 — Heatmiser Wifi Thermostat 1.7 contains a credential disclosure vulnerability that allows unauthenticated attackers to retrieve administra... (7.5 HIGH)
- CVE-2025-15624 — Plaintext Storage of a Password vulnerability in Sparx Systems Pty Ltd (7.5 HIGH)
- CVE-2021-47961 — A plaintext storage of a password vulnerability in Synology SSL VPN Client before 1.4.5-0684 allows remote attackers to access or influen... (8.1 HIGH)