CVE-2026-35467 | CERTCC cveClient up to 1.1.14 Stored API encrypt-storage.js insufficiently protected credentials

Inserito da Angelo Barbosa | Apr 2, 2026 | CVE

A vulnerability marked as problematic has been reported in CERTCC cveClient up to 1.1.14. Affected by this issue is some unknown functionality of the file encrypt-storage.js of the component Stored API. The manipulation leads to insufficiently protected credentials.

This vulnerability is uniquely identified as CVE-2026-35467. The attack is possible to be carried out remotely. No exploit exists.

It is suggested to upgrade the affected component.

CVE-2026-35467 | CERTCC cveClient up to 1.1.14 Stored API encrypt-storage.js insufficiently protected credentials

Post correlati

CVE-2025-8910 | WellChoose Organization Portal System up to IFTOP_P3_2_1_196 cross site scripting

CVE-2024-46988 | Enalean Tuleap Community Edition/Tuleap Enterprise Edition Email Notification insufficient permissions or privileges (GHSA-g76g-hc92-96xw)

CVE-2024-3467 | AVEVA PI Asset Framework Client PI System Explorer Environment deserialization (icsa-24-163-03)

CVE-2015-10129 | planet-freo up to 20150116 admin/inc/auth.inc.php auth comparison