CVE-2026-33977

FreeRDP is a free implementation of the Remote Desktop Protocol. Prior to version 3.24.2, a malicious RDP server can crash the FreeRDP client by sending audio data in IMA ADPCM format with an invalid initial step index value = 89. The unvalidated step index is read directly from the network and...

CVE-2021-22727

A CWE-331: Insufficient Entropy vulnerability exists in EVlink City EVC1S22P4 / EVC1S7P4 all versions prior to R8 V3.4.0.1, EVlink Parking EVW2 / EVF2 / EV.2 all versions prior to R8 V3.4.0.1, and EVlink Smart Wallbox EVB1A all versions prior to R8 V3.4.0.1 that could allow an attacker to gain...

CVE-2021-22799

A CWE-331: Insufficient Entropy vulnerability exists that could cause unintended connection from an internal network to an external network when an attacker manages to decrypt the SESU proxy password from the registry. Affected Product: Schneider Electric Software Update, V2.3.0 through V2.5.1...

MAL-2025-192750 Malicious code in elf-stats-cosy-cocoa-331 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 237b2bbc801ab402a2129c80e74c350c4f084911f128b1bf78bfaf21818cdefb The package elf-stats-cosy-cocoa-331 was found to contain malicious code...

Malicious code in elf-stats-cosy-cocoa-331 (npm)

--- -= Per source details. Do not edit below this line.=- Source: amazon-inspector 237b2bbc801ab402a2129c80e74c350c4f084911f128b1bf78bfaf21818cdefb The package elf-stats-cosy-cocoa-331 was found to contain malicious code...

EUVD-2018-0467

Malware in sbrugna...

EUVD-2021-9934

Malicious code in bioql PyPI...

CVE-2025-50122

A CWE-331: Insufficient Entropy vulnerability exists that could cause root password discovery when the password generation algorithm is reverse engineered with access to installation or upgrade artifacts...

WWBN AVideo salt generation insufficient entropy vulnerability

Talos Vulnerability Report TALOS-2023-1900 WWBN AVideo salt generation insufficient entropy vulnerability January 10, 2024 CVE Number CVE-2023-49599 SUMMARY An insufficient entropy vulnerability exists in the salt generation functionality of WWBN AVideo dev master commit 15fed957fb. A specially...

CVE-2021-22799

A CWE-331: Insufficient Entropy vulnerability exists that could cause unintended connection from an internal network to an external network when an attacker manages to decrypt the SESU proxy password from the registry. Affected Product: Schneider Electric Software Update, V2.3.0 through V2.5.1...

Design/Logic Flaw

A CWE-331: Insufficient Entropy vulnerability exists that could cause unintended connection from an internal network to an external network when an attacker manages to decrypt the SESU proxy password from the registry. Affected Product: Schneider Electric Software Update, V2.3.0 through V2.5.1...

CVE-2021-22799

Schneider Electric Software Update (SESU) versions 2.3.0–2.5.1 are affected by CWE-331 (Insufficient Entropy). The vulnerability could allow an attacker who decrypts the SESU proxy password stored in the registry to trigger an unintended connection from an internal network to an external network....

CVE-2021-22727

A CWE-331: Insufficient Entropy vulnerability exists in EVlink City EVC1S22P4 / EVC1S7P4 all versions prior to R8 V3.4.0.1, EVlink Parking EVW2 / EVF2 / EV.2 all versions prior to R8 V3.4.0.1, and EVlink Smart Wallbox EVB1A all versions prior to R8 V3.4.0.1 that could allow an attacker to gain...

CVE-2021-22727

CVE-2021-22727 affects Schneider Electric EVlink City (EVC1S22P4 / EVC1S7P4), EVlink Parking (EVW2 / EVF2 / EV.2), and EVlink Smart Wallbox (EVB1A) with all versions prior to R8 V3.4.0.1. The issue is CWE-331: Insufficient Entropy, enabling an attacker to gain unauthorized access to the charging ...

CVE-2021-22727

A CWE-331: Insufficient Entropy vulnerability exists in EVlink City EVC1S22P4 / EVC1S7P4 all versions prior to R8 V3.4.0.1, EVlink Parking EVW2 / EVF2 / EV.2 all versions prior to R8 V3.4.0.1, and EVlink Smart Wallbox EVB1A all versions prior to R8 V3.4.0.1 that could allow an attacker to gain...

SUSE SLES12 Security Update : kernel (SUSE-SU-2020:3544-1)

The SUSE Linux Enterprise 12 SP4 kernel was updated to receive various security and bug fixes. The following security bugs were fixed : CVE-2020-25705: A flaw in the way reply ICMP packets are limited in was found that allowed to quickly scan open UDP ports. This flaw allowed an off-path remote...

CVE-2017-18398

The CVE-2017-18398 entry refers to cPanel's DnsUtils prior to version 68.0.15, where zone creation is possible for hostname and account subdomains (SEC-331). This is documented across multiple connected sources (RH/CVE, NVD, CNVD/CNVD-2019-36129) indicating a vulnerability in the DNS management u...

CVE-2017-18398

DnsUtils in cPanel before 68.0.15 allows zone creation for hostname and account subdomains SEC-331...

CVE-2018-8497

creationtimestamp| type| source ---|---|--- 2018-10-10 04:00:00+00:00| seen| https://www.govcert.gov.hk/en/alertsdetail.php?id=331...

CVE-2018-1000620

Eran Hammer cryptiles version 4.1.1 earlier contains a CWE-331: Insufficient Entropy vulnerability in randomDigits method that can result in An attacker is more likely to be able to brute force something that was supposed to be random.. This attack appear to be exploitable via Depends upon the...