Cleartext Password Capture

GPTKB entity

Statements (20)
Predicate Object
gptkbp:instanceOf cybersecurity vulnerability
gptkbp:canBe man-in-the-middle attack
packet sniffing
gptkbp:cause unauthorized access
data breach
gptkbp:describedBy gptkb:OWASP_Top_10
CWE-319
gptkbp:detects network monitoring
penetration testing
https://www.w3.org/2000/01/rdf-schema#label Cleartext Password Capture
gptkbp:mitigatedBy encryption
secure protocols
gptkbp:occurredIn passwords are transmitted or stored without encryption
gptkbp:prevention hashing passwords before storage
use of TLS/SSL
gptkbp:relatedTo network security
password security
gptkbp:riskFactor high
gptkbp:bfsParent gptkb:Responder
gptkbp:bfsLayer 7