Lucene search
+L

164 matches found

Packet Storm
Packet Storm
added 2019/09/16 12:0 a.m.279 views

Inteno IOPSYS Gateway 3DES Key Extraction Improper Access

Exploit Title: Inteno IOPSYS Gateway 3DES Key Extraction - Improper Access Restrictions Date: 2019-06-29 Exploit Author: Gerard Fuguet [email protected] Vendor Homepage: https://www.intenogroup.com/ Version: EG200-WU7P1UADAMO3.16.4-1902261650 Fixed Version: EG200-WU7P1UADAMO3.16.8-1908200937...

0.6AI score0.02035EPSS
Exploits5
Exploit DB
Exploit DB
added 2019/09/16 12:0 a.m.320 views

Inteno IOPSYS Gateway - Improper Access Restrictions

Exploit Title: Inteno IOPSYS Gateway 3DES Key Extraction - Improper Access Restrictions Date: 2019-06-29 Exploit Author: Gerard Fuguet [email protected] Vendor Homepage: https://www.intenogroup.com/ Version: EG200-WU7P1UADAMO3.16.4-1902261650 Fixed Version: EG200-WU7P1UADAMO3.16.8-1908200937...

6.5CVSS6.7AI score0.02035EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.42 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : python Vulnerability (NS-SA-2019-0022)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has python packages installed that are affected by a vulnerability: - A flaw was found in the way the DES/3DES cipher was used as part of the TLS/SSL protocol. A man-in-the-middle attacker could use this flaw to recover some...

7.5CVSS6.9AI score0.95707EPSS
Exploits7References2
Packet Storm
Packet Storm
added 2019/05/29 12:0 a.m.278 views

Siemens LOGO! 8 Missing Authentication

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA512 Advisory ID: SYSS-2019-013 Product: LOGO! Manufacturer: Siemens Affected Versions: LOGO! 8 all versions Tested Versions: LOGO! 8, 6ED1052-2MD00-0BA8 FS:03, 0BA8.Standard V1.08.03 Vulnerability Type: Missing Authentication for Critical Function CWE-3...

7.5CVSS0.8AI score0.02746EPSS
Exploits3
RedHat Linux
RedHat Linux
added 2019/05/20 2:12 p.m.177 views

Moderate: Red Hat Security Advisory: Red Hat Quay 3.0.2 security and bug fix update

An update is now available for Red Hat Quay 3. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE links in the...

7.5CVSS6.7AI score0.95707EPSS
Exploits7References3
Tenable Nessus
Tenable Nessus
added 2019/05/14 12:0 a.m.34 views

EulerOS Virtualization for ARM 64 3.0.1.0 : python (EulerOS-SA-2019-1403)

According to the versions of the python packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - Python 2.7.x through 2.7.16 and 3.x through 3.7.2 is affected by: Improper Handling of Unicode Encoding with an...

9.8CVSS6.9AI score0.95707EPSS
Exploits8References5
Tenable Nessus
Tenable Nessus
added 2019/05/14 12:0 a.m.42 views

EulerOS Virtualization 3.0.1.0 : python (EulerOS-SA-2019-1434)

According to the versions of the python packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - It was found that Python's smtplib library did not return an exception when StartTLS failed to be established in the SMTP.starttl...

10CVSS7.5AI score0.95707EPSS
Exploits21References17
IBM Security Bulletins
IBM Security Bulletins
added 2019/02/07 10:50 p.m.23 views

Security Bulletin: IBM Spectrum Protect (formerly Tivoli Storage Manager) Client and IBM Spectrum Protect for Virtual Environments allow Triple DES (3DES) ciphers to be used (CVE-2018-1785)

Summary IBM Spectrum Protect formerly Tivoli Storage Manager and IBM Spectrum Protect for Virtual Environments allow Triple DES 3DES ciphers to be used. This can result in the use of weaker than expected cryptographic algorithms. Vulnerability Details CVEID: CVE-2018-1785 DESCRIPTION: IBM Tivoli...

7.5CVSS0.7AI score0.01128EPSS
Exploits0Affected Software2
Tenable Nessus
Tenable Nessus
added 2019/01/03 12:0 a.m.25 views

Fedora 28 : libtomcrypt (2018-9d667bdff8)

Fix Side Channel Based ECDSA Key Extraction CVE-2018-12437 PR 408 - Fix potential stack overflow when DER flexi-decoding CVE-2018-0739 PR 373 - Fix two-key 3DES PR 390 - Fix accelerated CTR mode PR 359 - Fix Fortuna PRNG PR 363 - Fix compilation on platforms where cc doesn't point to gcc PR 382 -...

6.5CVSS6.4AI score0.19295EPSS
Exploits1References3
IBM Security Bulletins
IBM Security Bulletins
added 2018/10/04 10:45 a.m.64 views

Security Bulletin: An OpenSSL vulnerability could affect IBM Performance Management products (CVE-2016-2183)

Summary OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error in the DES/3DES cipher, used as a part of the SSL/TLS protocol. By capturing large amounts of encrypted traffic between the SSL/TLS server and the client, a remote attacker able to conduct a...

7.5CVSS1AI score0.95707EPSS
Exploits7Affected Software1
Tenable Nessus
Tenable Nessus
added 2018/07/24 12:0 a.m.293 views

Fedora 27 : libtomcrypt (2018-39e0872379)

Fix Side Channel Based ECDSA Key Extraction CVE-2018-12437 PR 408 - Fix potential stack overflow when DER flexi-decoding CVE-2018-0739 PR 373 - Fix two-key 3DES PR 390 - Fix accelerated CTR mode PR 359 - Fix Fortuna PRNG PR 363 - Fix compilation on platforms where cc doesn't point to gcc PR 382 -...

6.5CVSS6.4AI score0.19295EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2018/07/16 12:0 a.m.85 views

CentOS 7 : python (CESA-2018:2123)

An update for python is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.8AI score0.95707EPSS
Exploits7References2
Cent OS
Cent OS
added 2018/07/13 4:28 p.m.401 views

python, tkinter security update

CentOS Errata and Security Advisory CESA-2018:2123 An update for python is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

7.5CVSS6.6AI score0.95707EPSS
Exploits7References7
IBM Security Bulletins
IBM Security Bulletins
added 2018/07/10 8:34 a.m.32 views

Security Bulletin: Vulnerabilities in OpenSSL affects IBM Rational ClearCase (CVE-2016-2177, CVE-2016-2178, CVE-2016-2183, CVE-2016-6302, CVE-2016-6303, CVE-2016-6304, CVE-2016-6306)

Summary OpenSSL vulnerabilities were disclosed on September 22 and 26, 2016 by the OpenSSL Project. OpenSSL is used by IBM Rational ClearCase. IBM Rational ClearCase has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-2177 DESCRIPTION: OpenSSL is vulnerable to a denial of...

9.8CVSS0.5AI score0.95707EPSS
Exploits8Affected Software2
Tenable Nessus
Tenable Nessus
added 2018/07/05 12:0 a.m.46 views

Scientific Linux Security Update : python on SL7.x x86_64 (20180703)

Security Fixes : - A flaw was found in the way the DES/3DES cipher was used as part of the TLS/SSL protocol. A man-in-the-middle attacker could use this flaw to recover some plaintext data by capturing large amounts of encrypted traffic between TLS/SSL server and client if the communication used ...

7.5CVSS6.8AI score0.95707EPSS
Exploits7References2
Tenable Nessus
Tenable Nessus
added 2018/07/05 12:0 a.m.67 views

Oracle Linux 7 : python (ELSA-2018-2123)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2018-2123 advisory. 2.7.5-69.0.1 - Add Oracle Linux distribution in platform.py orabug 20812544 2.7.5-70 - Remove 3DS cipher to mitigate CVE-2016-2183 sweet32. Resolves: rhbz158454...

7.5CVSS7AI score0.95707EPSS
Exploits7References2
RedHat Linux
RedHat Linux
added 2018/07/03 2:14 p.m.141 views

Moderate: Red Hat Security Advisory: python security update

An update for python is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the...

7.5CVSS6.6AI score0.95707EPSS
Exploits7References2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 10:28 p.m.25 views

Security Bulletin: Multiple vulnerabilities in IBM® Java SDK have been identified in IBM WebSphere Application Server shipped with IBM Integrated Information Core (January 2017 CPU)

Summary IBM WebSphere Application Server is shipped as a component of IBM Integrated Information Core. Oracle released the January 2017 critical patch updates that contain multiple fixes for security vulnerabilities in the IBM Java Development Kit that is included with IBM WebSphere Application...

7.5CVSS1AI score0.95707EPSS
Exploits7Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:38 p.m.89 views

Security Bulletin: GSKit Sweet32 Birthday attacks on 64-bit block ciphers in TLS affects the Tivoli Storage Manager (IBM Spectrum Protect) Server (CVE-2016-2183)

Summary GSKit is vulnerable to Sweet32 Birthday attacks on 64-bit block ciphers in TLS which affects the Tivoli Storage Manager IBM Spectrum Protect Server. Vulnerability Details CVEID: CVE-2016-2183 DESCRIPTION: An error in the DES/3DES cipher, used as a part of the SSL/TLS protocol, could allow...

7.5CVSS0.8AI score0.95707EPSS
Exploits7Affected Software2
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/17 3:38 p.m.46 views

Security Bulletin: Vulnerability in the GSKit component of Tivoli Netcool/OMNIbus (CVE-2016-2183)

Summary Vulnerability has been addressed in the GSKit component of Tivoli Netcool/OMNIbus. Vulnerability Details CVEID: CVE-2016-2183 DESCRIPTION: OpenSSL could allow a remote attacker to obtain sensitive information, caused by an error in the DES/3DES cipher, used as a part of the SSL/TLS...

7.5CVSS0.3AI score0.95707EPSS
Exploits7Affected Software1
Rows per page
Query Builder