CWE-522βInsufficiently Protected Credentials
PUBLISHEDweakness record
released 2006-07-19 Β· last modified 2025-12-11
Metadata
Weakness Name
Insufficiently Protected Credentials
Description
The product transmits or stores authentication credentials, but it uses an insecure method that is susceptible to unauthorized interception and/or retrieval.