The vulnerability of the IBM Security QRadar EDR endpoint protection mechanism, which stems from the use of cryptographic algorithms containing defects, allows attackers to gain unauthorized access to protected information.

The vulnerability of the IBM Security QRadar EDR endpoint protection mechanism lies in the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow an attacker operating remotely to gain unauthorized access to protected information...

CVE-2024-45643

IBM Security QRadar 3.12 EDR uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt sensitive credential information...

Fedora 41 : libssh2 (2025-9cee4b3ac0)

The remote Fedora 41 host has a package installed that is affected by multiple vulnerabilities as referenced in the FEDORA-2025-9cee4b3ac0 advisory. This update, to the current upstream libssh2 release, addresses a couple of security issues: CVE-2023-6918 missing checks for return values for...

CVE-2024-45643 IBM QRadar EDR information disclosure

IBM Security QRadar 3.12 EDR uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt sensitive credential information...

CVE-2024-45643

CVE-2024-45643 affects IBM Security QRadar EDR 3.12. The issue is caused by the use of weaker-than-expected cryptographic algorithms, which could allow an attacker to decrypt sensitive credential information. Public references in the IBM Security bulletin indicate remediation via an update to QRa...

CVE-2024-45643 IBM QRadar EDR information disclosure

IBM Security QRadar 3.12 EDR uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt sensitive credential information...

MacOS X Applications Enumerated Software Report

Reports details about software enumerated from installed MacOS X applications TRUSTED...

Weak Cryptographic Algorithms

gov.nsa.emissary, emissary is vulnerable to weak cryptographic algorithms. The vulnerability is due to the use of weak cryptographic algorithms e.g., SHA-1, CRC32, and SSDEEP in the ChecksumCalculator class, which can be exploited to generate hash collisions or compromise data integrity...

CVE-2025-27508

Emissary is a P2P based data-driven workflow engine. The ChecksumCalculator class within allows for hashing and checksum generation, but it includes or defaults to algorithms that are no longer recommended for secure cryptographic use cases e.g., SHA-1, CRC32, and SSDEEP. These algorithms, while...

Authentication Bypass

github.com/ryanbekhen/nanoproxy is vulnerable to Authentication Bypass. The vulnerability is due to the use of an outdated version of golang.org/x/crypto, which may contain unresolved security flaws, allows attackers could exploit weaknesses such as weak cryptographic algorithms...

GHSA-HW43-FCMM-3M5G Emissary May Use a Broken or Risky Cryptographic Algorithm

Summary The ChecksumCalculator class within allows for hashing and checksum generation, but it includes or defaults to algorithms that are no longer recommended for secure cryptographic use cases e.g., SHA-1, CRC32, and SSDEEP. These algorithms, while possibly valid for certain...

Emissary May Use a Broken or Risky Cryptographic Algorithm

Summary The ChecksumCalculator class within allows for hashing and checksum generation, but it includes or defaults to algorithms that are no longer recommended for secure cryptographic use cases e.g., SHA-1, CRC32, and SSDEEP. These algorithms, while possibly valid for certain...

CVE-2025-27508

Emissary is a P2P based data-driven workflow engine. The ChecksumCalculator class within allows for hashing and checksum generation, but it includes or defaults to algorithms that are no longer recommended for secure cryptographic use cases e.g., SHA-1, CRC32, and SSDEEP. These algorithms, while...

CVE-2025-27508 Emissary Use of a Broken or Risky Cryptographic Algorithm

Emissary is a P2P based data-driven workflow engine. The ChecksumCalculator class within allows for hashing and checksum generation, but it includes or defaults to algorithms that are no longer recommended for secure cryptographic use cases e.g., SHA-1, CRC32, and SSDEEP. These algorithms, while...

CVE-2025-27508

Emissary (CVE-2025-27508) uses a ChecksumCalculator that defaults to weak cryptographic algorithms (SHA-1, CRC32, SSDEEP). The issue may undermine cryptographic guarantees in contexts requiring strong integrity, with potential collision risks or tampering awareness. The problem is documented acro...

CVE-2025-27508 Emissary Use of a Broken or Risky Cryptographic Algorithm

Emissary is a P2P based data-driven workflow engine. The ChecksumCalculator class within allows for hashing and checksum generation, but it includes or defaults to algorithms that are no longer recommended for secure cryptographic use cases e.g., SHA-1, CRC32, and SSDEEP. These algorithms, while...

Emissary 加密问题漏洞

Emissary is a distributed P2P data-driven workflow framework open-sourced by the National Security Agency. An encryption issue vulnerability exists in versions of Emissary prior to 8.24.0 that stems from the use of insecure encryption algorithms resulting in a security risk...

The vulnerability of IBM Engineering Lifecycle Optimization - Publishing software, related to the use of cryptographic algorithms containing defects, allows attackers to gain unauthorized access to protected information.

The vulnerability of IBM Engineering Lifecycle Optimization - Publishing software relates to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow an unauthorized attacker to gain unauthorized access to protected information...

The vulnerability of the implementations of TLS and SSL protocols in the B&R Automation Runtime and B&R mapp View software for managing and controlling industrial processes allows a perpetrator to compromise the integrity of the protected information.

The vulnerability of the TLS and SSL protocol implementations in B&R Automation Runtime and B&R mapp View software for process control and management involves the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow a malicious actor to compromis...

The vulnerability of the software implementation of the TLS protocol for managing the SAN network by Brocade SANnav allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the software implementation of the TLS protocol for managing SAN networks in Brocade SANnav systems is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized...