Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-257 (以可恢复格式存储口令) — Vulnerability Class 59

59 vulnerabilities classified as CWE-257 (以可恢复格式存储口令). AI Chinese analysis included.

CWE-257 represents a critical data storage weakness where passwords are kept in a recoverable format, such as reversible encryption or plaintext, rather than using one-way cryptographic hashing. This flaw is typically exploited by malicious insiders or attackers who gain access to the database, allowing them to decrypt stored credentials and engage in password reuse attacks across multiple systems. Because the original passwords can be retrieved, this practice offers no security advantage over storing them in plain text and significantly increases the blast radius of a breach. To avoid this vulnerability, developers must implement strong, salted hashing algorithms like bcrypt or Argon2, ensuring that passwords are irreversibly transformed and cannot be recovered even if the storage medium is compromised.

MITRE CWE Description
The storage of passwords in a recoverable format makes them subject to password reuse attacks by malicious users. In fact, it should be noted that recoverable encrypted passwords provide no significant benefit over plaintext passwords since they are subject not only to reuse by malicious attackers but also by malicious insiders. If a system administrator can recover a password directly, or use a brute force search on the available information, the administrator can use the password on other accounts.
Common Consequences (2)
Confidentiality, Access ControlGain Privileges or Assume Identity
User's passwords may be revealed.
Access ControlGain Privileges or Assume Identity
Revealed passwords may be reused elsewhere to impersonate the users in question.
Mitigations (1)
Architecture and DesignUse strong, non-reversible encryption to protect stored passwords.
Examples (2)
Both of these examples verify a password by comparing it to a stored compressed version.
int VerifyAdmin(char *password) { if (strcmp(compress(password), compressed_password)) { printf("Incorrect Password!\n"); return(0); } printf("Entering Diagnostic Mode...\n"); return(1); }
Bad · C
int VerifyAdmin(String password) { if (passwd.Equals(compress(password), compressed_password)) { return(0); } //Diagnostic Mode return(1); }
Bad · Java
The following examples show a portion of properties and configuration files for Java and ASP.NET applications. The files include username and password information but they are stored in cleartext.
# Java Web App ResourceBundle properties file ... webapp.ldap.username=secretUsername webapp.ldap.password=secretPassword ...
Bad · Java
... <connectionStrings> <add name="ud_DEV" connectionString="connectDB=uDB; uid=db2admin; pwd=password; dbalias=uDB;" providerName="System.Data.Odbc" /> </connectionStrings> ...
Bad · ASP.NET
CVE IDTitleCVSSSeverityPublished
CVE-2026-22574 Fortinet FortiSOAR PaaS和Fortinet FortiSOAR on-premise 安全漏洞 — FortiSOAR PaaS 4.1 Medium2026-04-14
CVE-2026-22576 Fortinet FortiSOAR PaaS和Fortinet FortiSOAR on-premise 安全漏洞 — FortiSOAR PaaS 4.1 Medium2026-04-14
CVE-2025-8095 Recoverable obfuscation using the OECH1 prefix encoding in OpenEdge — OpenEdge 8.1 -2026-04-14
CVE-2016-15058 Hirschmann HiLCOS Classic Platform Password Exposure via SNMP — Hirschmann HiLCOS Classic Platform 8.1 High2026-04-03
CVE-2026-22614 Eaton Easysoft 安全漏洞 — EasySoft 6.1 Medium2026-03-10
CVE-2026-30785 RustDesk Encrypts Local Passwords with World-Readable Machine ID and Fixed Zero Nonce (XSalsa20-Poly1305) — RustDesk Client 6.2 -2026-03-05
CVE-2026-20128 Cisco Catalyst SD-WAN Manager Information Disclosure Vulnerability — Cisco Catalyst SD-WAN Manager 7.5 High2026-02-25
CVE-2025-57796 Use of a hardcoded static key to protect sensitive data in Explorance Blue — Blue 7.5AIHighAI2026-01-28
CVE-2025-14295 Automated Logic WebCTRL and Carrier i-Vu Session Fixation — WebCTRL 8.1AIHighAI2026-01-22
CVE-2025-8307 Recoverable passwords in Asseco Infomedica Plus — InfoMedica Plus 6.5 -2026-01-08
CVE-2025-34180 NetSupport Manager < 14.12.0001 Gateway Key Reversible Encoding Credential Recovery — Manager 9.8AICriticalAI2025-12-15
CVE-2025-40774 Siemens SiPass Integrated 安全漏洞 — SiPass integrated 4.4 Medium2025-10-14
CVE-2025-0280 HCL Compass is affected by a security vulnerability — Compass 7.5 High2025-09-03
CVE-2025-57789 Vulnerability in Initial Administrator Login Process — CommCell 8.1 -2025-08-20
CVE-2025-8904 Privilege escalation issue in Amazon EMR Secret Agent component — EMR 8.5 High2025-08-13
CVE-2025-44958 RUCKUS Network Director 安全漏洞 — Network Director 5.3 Medium2025-08-04
CVE-2025-6996 Improper Encryption in Ivanti Endpoint Manager — Endpoint Manager 8.4 High2025-07-08
CVE-2025-6995 Improper Encryption in Ivanti Endpoint Manager — Endpoint Manager 8.4 High2025-07-08
CVE-2025-27459 CVE-2025-27459 — Endress+Hauser MEAC300-FNADE4 4.4 Medium2025-07-03
CVE-2024-51552 Weak Password Storage — ASPECT-Enterprise 6.0 Medium2025-05-22
CVE-2024-32122 Fortinet FortiOS 安全漏洞 — FortiOS 2.1 Low2025-04-08
CVE-2025-24852 Inaba Denki Sangyo CHOCO TEI WATCHER mini 安全漏洞 — CHOCO TEI WATCHER mini (IB-MCT001) 4.6 Medium2025-03-31
CVE-2024-8774 Privilege Escalation in SIMPLE.ERP — SIMPLE.ERP 8.8AIHighAI2025-03-24
CVE-2024-32151 Sharp MFP 安全漏洞 — Multiple MFPs (multifunction printers) 5.9 Medium2024-11-26
CVE-2024-20462 Cisco ATA 190 Series Analog Telephone Adapter Muliplatform Firmware Information Disclosure Vulnerability — Cisco Analog Telephone Adaptor (ATA) Software 5.5 Medium2024-10-16
CVE-2024-45744 TopQuadrant TopBraid EDG password manager stores external credentials insecurely — TopBraid EDG 3.0 Low2024-09-27
CVE-2024-6694 WP Mail SMTP <= 4.0.1 - Authenticated (Admin+) SMTP Password Exposure — WP Mail SMTP by WPForms – The Most Popular SMTP and Email Log Plugin 2.7 Low2024-07-20
CVE-2024-32932 American Dynamics Illustra Essentials Gen 4 - Reversible User Credential - stored web interface — American Dynamics Illustra Essentials Gen 4 6.8 Medium2024-07-02
CVE-2024-32756 American Dynamics Illustra Essentials Gen 4 - Reversible User Credential - Linux — American Dynamics Illustra Essentials Gen 4 6.8 Medium2024-07-02
CVE-2024-3073 Easy WP SMTP by SendLayer <= 2.3.0 - Exposure of Sensitive Information via the UI — Easy WP SMTP – WordPress SMTP and Email Logs: Gmail, Office 365, Outlook, Custom SMTP, and more 2.7 Low2024-06-13

Vulnerabilities classified as CWE-257 (以可恢复格式存储口令) represent 59 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.