CVE-2022-22462 IBM Security Verify Governance, Identity Manager virtual appliance component information disclosure

IBM Security Verify Governance, Identity Manager virtual appliance component 10.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 225078...

PT-2023-12699 · Ibm · Ibm Security Verify Governance

Name of the Vulnerable Software and Affected Versions: IBM Security Verify Governance, Identity Manager virtual appliance component version 10.0.1 Description: The issue concerns the use of weaker than expected cryptographic algorithms, which could allow an attacker to decrypt highly sensitive...

Vulnerability of the PM_io parser function: <PMDEC>::read_vertex(). Halfedge_of[], part of the Nef_2/PM_io parser.h library, which belongs to the Computational Geometry Algorithms library CGAL. This vulnerability allows an attacker to access confidential data, compromise its integrity, and cause service failures.

The vulnerability of the PMio parser function ::readvertex is related to unvalidated array indexing in the component Nef2/PMio parser.h from the Computational Geometry Library CGAL library. Exploiting this vulnerability allows an attacker to gain access to confidential data, compromise its...

PT-2025-54079

Name of the Vulnerable Software and Affected Versions Linux kernel affected versions not specified Description The Linux kernel contains a flaw within the ksmbd module related to out-of-bounds access in the decode preauth ctxt function. The issue stems from insufficient boundary checks during the...

CVE-2022-22461 IBM Security Verify Governance, Identity Manager information disclosure

IBM Security Verify Governance, Identity Manager 10.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 225007...

CVE-2022-22461 IBM Security Verify Governance, Identity Manager information disclosure

IBM Security Verify Governance, Identity Manager 10.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 225007...

CVE-2022-22461

CVE-2022-22461 affects IBM Security Verify Governance, Identity Manager virtual appliance component version 10.0.1 . The vulnerability arises from use of weaker-than-expected cryptographic algorithms, which could allow an attacker to decrypt highly sensitive information (impact on confidentiality...

PT-2022-7093 · Ibm · Ibm Security Verify Governance +1

Name of the Vulnerable Software and Affected Versions: IBM Security Verify Governance, Identity Manager version 10.0.1 Description: The issue is related to the use of weak cryptographic algorithms in the Identity Manager component of IBM Security Verify Governance software, which is used for...

CVE-2022-38391

IBM Spectrum Control 5.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 233982...

CVE-2022-38391

IBM Spectrum Control 5.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 233982...

Code injection

IBM Spectrum Control 5.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 233982...

CVE-2022-38391

CVE-2022-38391 affects IBM Spectrum Control 5.4, where the vulnerability stems from the use of weaker-than-expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. Concrete details across sources confirm the affected product/version and the cryptogra...

CVE-2022-38391 IBM Spectrum Control information disclosure

IBM Spectrum Control 5.4 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 233982...

golang: crash in a golang.org/x/crypto/ssh server

A broken cryptographic algorithm flaw was found in golang.org/x/crypto/ssh. This issue causes a client to fail authentication with RSA keys to servers that reject signature algorithms based on SHA-2, enabling an attacker to crash the server, resulting in a loss of availability...

CVE-2022-34361

IBM Sterling Secure Proxy 6.0.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 230522...

Code injection

IBM Sterling Secure Proxy 6.0.3 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 230522...

CVE-2022-34361

CVE-2022-34361 affects IBM Sterling Secure Proxy 6.0.3. The issue arises from using weaker-than-expected cryptographic algorithms, which could allow an attacker to decrypt highly sensitive information. The IBM bulletin lists the affected product/version and provides a remediation: upgrade to the ...

PT-2022-22145 · Ibm · Ibm Sterling Secure Proxy

Name of the Vulnerable Software and Affected Versions: IBM Sterling Secure Proxy version 6.0.3 Description: The issue is related to the use of weaker than expected cryptographic algorithms, which could allow an attacker to decrypt highly sensitive information. Recommendations: For IBM Sterling...

PT-2022-5972 · 3S Smart Software Solutions · Codesys Development System V3

Name of the Vulnerable Software and Affected Versions: CODESYS Development System V3 versions prior to V3.5.18.40 Description: The issue is related to inadequate encryption strength, allowing an unauthenticated local attacker to access and manipulate the code of the encrypted boot application. It...

Botan has an unspecified vulnerability

Botan is a library of cryptographic algorithms written in C++. It supports a variety of algorithms such as AES, DES, SHA-1, RSA, DSA and Diffie-Hellman. A security vulnerability exists in Botan versions 1.11.34 and later up to 2.19.3, which stems from a certificate validation error and can be...