20 matches found
CVE-2026-32096
creationtimestamp| type| source ---|---|--- 2026-03-11 19:16:18+00:00| seen| https://www.incibe.es/incibe-cert/alerta-temprana/vulnerabilidades/cve-2026-32096 2026-03-12 03:00:35+00:00| seen| https://infosec.exchange/users/offseq/statuses/116213968591808640 2026-03-31 15:02:41+00:00|...
CVE-2025-32096
creationtimestamp| type| source ---|---|--- 2025-12-25 06:34:40+00:00| seen| https://bsky.app/profile/cve.skyfleet.blue/post/3mas5weozka2y 2025-12-26 00:40:33+00:00| seen| https://bsky.app/profile/thehackerwire.bsky.social/post/3mau2m2y2sg2p 2026-01-05 20:06:24+00:00| published-proof-of-concept|...
CVE-2023-32096
Compiler removal of buffer clearing in slicryptotransparentaeadencrypttag in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2022-32096
Rhonabwy before v1.1.5 was discovered to contain a buffer overflow via the component rjweaesgcmkeyunwrap. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted JWE token...
CVE-2021-32096
The ConsoleAction component of U.S. National Security Agency NSA Emissary 5.9.0 allows a CSRF attack that results in injecting arbitrary Ruby code for an eval call via the CONSOLECOMMANDSTRING parameter...
CVE-2024-32096
Cross-Site Request Forgery CSRF vulnerability in DAEV.Tech WP Migration Plugin DB & Files – WP Synchro.This issue affects WP Migration Plugin DB & Files – WP Synchro: from n/a through 1.11.2...
CVE-2024-32096 WordPress WP Synchro plugin <= 1.11.2 - Cross Site Request Forgery (CSRF) vulnerability
Cross-Site Request Forgery CSRF vulnerability in DAEV.Tech WP Migration Plugin DB & Files – WP Synchro.This issue affects WP Migration Plugin DB & Files – WP Synchro: from n/a through 1.11.2...
CVE-2024-32096
CVE-2024-32096 describes a Cross-Site Request Forgery (CSRF) vulnerability in the WordPress plugin WP Synchro (WP Synchro) , affecting versions from n/a through 1.11.2 . The connected documents confirm CSRF involvement but do not provide concrete exploit details, affected subcomponents, root caus...
WordPress WP Migration Plugin DB & Files – WP Synchro Plugin <= 1.11.2 is vulnerable to Cross Site Request Forgery (CSRF)
Software WP Migration Plugin DB & Files – WP Synchro Type Plugin Vulnerable versions = 1.11.2 Fixed in 1.11.3 OWASP Top 10 A1: Broken Access Control Classification Cross Site Request Forgery CSRF CVE CVE-2024-32096 Patch priority Low CVSS severity Low 5.4 Developer Claim ownership PSID 667250807b...
CVE-2023-32096
creationtimestamp| type| source ---|---|--- 2023-05-18 22:32:33+00:00| seen| https://t.me/cibsecurity/64422 2025-01-21 22:01:07+00:00| published-proof-of-concept| https://t.me/DarkWebInformerCVEAlerts/2490...
CVE-2023-32096
Compiler removal of buffer clearing in slicryptotransparentaeadencrypttag in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2023-32096
The vulnerability CVE-2023-32096 affects Silicon Labs Gecko Platform SDKs prior to or including 4.2.1, where the compiler removal of a buffer clear in the function sli_crypto_transparent_aead_encrypt_tag can cause key material to be duplicated in RAM. This can expose sensitive material within mem...
CVE-2023-32096 Key duplication in GSDK
Compiler removal of buffer clearing in slicryptotransparentaeadencrypttag in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2023-32096 Key duplication in GSDK
Compiler removal of buffer clearing in slicryptotransparentaeadencrypttag in Silicon Labs Gecko Platform SDK v4.2.1 and earlier results in key material duplication to RAM...
CVE-2022-32096
creationtimestamp| type| source ---|---|--- 2022-07-13 20:26:33+00:00| seen| https://t.me/cibsecurity/46170...
CVE-2022-32096
Rhonabwy before v1.1.5 was discovered to contain a buffer overflow via the component rjweaesgcmkeyunwrap. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted JWE token...
CVE-2022-32096
Rhonabwy before v1.1.5 was discovered to contain a buffer overflow via the component rjweaesgcmkeyunwrap. This vulnerability allows attackers to cause a Denial of Service DoS via a crafted JWE token...
CVE-2022-32096
CVE-2022-32096 affects Rhonabwy prior to v1.1.5. The vulnerability is a buffer overflow in the r_jwe_aesgcm_key_unwrap component, leading to a Denial of Service via a crafted JWE token. The connected documents consistently report this exact root cause and impact; no public remediation/version Fix...
CVE-2021-32096
CVE-2021-32096 affects NSA Emissary 5.9.0 — the ConsoleAction component is vulnerable to a CSRF attack that results in injecting arbitrary Ruby code (via an eval call) through the CONSOLE_COMMAND_STRING parameter. This is the stated impact in the CVE entry. The connected documents also corroborat...
CVE-2021-32096
The ConsoleAction component of U.S. National Security Agency NSA Emissary 5.9.0 allows a CSRF attack that results in injecting arbitrary Ruby code for an eval call via the CONSOLECOMMANDSTRING parameter...