CWE-319 - CERT CVE

CWE-319 - Cleartext Transmission of Sensitive Information

The software transmits sensitive or security-critical data in cleartext in a communication channel that can be sniffed by unauthorized actors.

CAPEC ID Naziv
CAPEC-102 Session Sidejacking
CAPEC-117 Interception
CAPEC-383 Harvesting Information via API Event Monitoring
CAPEC-477 Signature Spoofing by Mixing Signed and Unsigned Content
CAPEC-65 Sniff Application Code