Lucene search
K

117 matches found

Cvelist
Cvelist
added 2026/03/12 5:24 p.m.25 views

CVE-2026-28252 Use of a Broken or Risky Cryptographic Algorithm vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge

A Use of a Broken or Risky Cryptographic Algorithm vulnerability in Trane Tracer SC, Tracer SC+, and Tracer Concierge could allow an attacker to bypass authentication and gain root-level access to the device...

9.2CVSS0.00216EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/05 12:0 a.m.10 views

PT-2026-23451

Use of a Broken or Risky Cryptographic Algorithm vulnerability in rustdesk-client RustDesk Client rustdesk-client on Windows, MacOS, Linux, iOS, Android, WebClient Config import, URI scheme handler, CLI --config modules allows Retrieve Embedded Sensitive Data. This vulnerability is associated wit...

8.7CVSS5.9AI score0.0024EPSS
Exploits1References2
Snyk
Snyk
added 2026/02/26 3:14 a.m.6 views

Use of a Broken or Risky Cryptographic Algorithm

Overview parse-server is a version of the Parse backend that can be deployed to any infrastructure that can run Node.js. Affected versions of this package are vulnerable to Use of a Broken or Risky Cryptographic Algorithm via the Google authentication. An attacker can gain unauthorized access to...

9.3CVSS6AI score0.00176EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2026/01/26 3:10 p.m.5 views

CVE-2026-22585

Use of a Broken or Risky Cryptographic Algorithm vulnerability in Salesforce Marketing Cloud Engagement CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage modules allows Web Services Protocol Manipulation. This issue affects Marketing Cloud...

9.8CVSS5.9AI score0.00383EPSS
Exploits0References1
CVE
CVE
added 2026/01/24 12:15 a.m.30 views

CVE-2026-22585

CVE-2026-22585 corresponds to a vulnerability in Salesforce Marketing Cloud Engagement (CloudPages, Forward to a Friend, Profile Center, Subscription Center, Unsub Center, View As Webpage) where a broken or risky cryptographic algorithm enables Web Services Protocol Manipulation. The Red Hat, CIR...

9.8CVSS5.4AI score0.00383EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2026/01/20 10:15 p.m.4 views

CVE-2025-58743

Use of a Broken or Risky Cryptographic Algorithm DES vulnerability in the Password class in C2SConnections.dll in Milner ImageDirector Capture on Windows allows Encryption Brute Forcing to obtain database credentials.This issue affects ImageDirector Capture: from 7.0.9.0 before 7.6.3.25808...

7.5CVSS5.8AI score
Exploits0References1
Snyk
Snyk
added 2026/01/09 7:39 p.m.4 views

Use of a Broken or Risky Cryptographic Algorithm

Overview beatt83/jose-swift is a comprehensive support for the Jose suite of standards, including JWA JSON Web Algorithms, JWK JSON Web Key, JWE JSON Web Encryption, JWS JSON Web Signature, and JWT JSON Web Token. Affected versions of this package are vulnerable to Use of a Broken or Risky...

9.3CVSS7.1AI score
Exploits0References2
Snyk
Snyk
added 2025/12/17 8:38 p.m.5 views

Use of a Broken or Risky Cryptographic Algorithm

Overview Affected versions of this package are vulnerable to Use of a Broken or Risky Cryptographic Algorithm due to missing cryptographic key commitment when storing encrypted data keys in an instruction file. An attacker with write access to the S3 bucket can manipulate encrypted data keys to...

6CVSS6.7AI score0.00141EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/17 8:38 p.m.5 views

Use of a Broken or Risky Cryptographic Algorithm

Overview Amazon.Extensions.S3.Encryption is an easy-to-use Amazon S3 encryption client that allows you to secure your sensitive data before you send it to Amazon S3. Affected versions of this package are vulnerable to Use of a Broken or Risky Cryptographic Algorithm due to missing cryptographic k...

6CVSS6.6AI score0.00094EPSS
Exploits0References2
Snyk
Snyk
added 2025/12/17 8:38 p.m.5 views

Use of a Broken or Risky Cryptographic Algorithm

Overview Affected versions of this package are vulnerable to Use of a Broken or Risky Cryptographic Algorithm due to missing cryptographic key commitment when storing encrypted data keys in an instruction file. An attacker with write access to the S3 bucket can manipulate encrypted data keys to...

6CVSS6.7AI score0.00185EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/12/05 12:0 a.m.3 views

Dell PowerScale OneFS 8.2.2 <= 9.5.0.8 / 9.6.0.0 <= 9.7.0.0 Broken Cryptographic Algorithm (DSA-2024-255)

The Dell PowerScale OneFS on the remote device is missing a security patch and is, therefore, affected by broken or risky cryptographic algorithm vulnerability: - Dell PowerScale OneFS versions 8.2.2.x through 9.7.0.0 contain use of a broken or risky cryptographic algorithm vulnerability. An...

7.5CVSS5.6AI score0.00205EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/11/14 12:0 a.m.5 views

CVE-2025-54340

A vulnerability was found in the Application Server of Desktop Alert PingAlert version 6.1.0.11 to 6.1.1.2. There is a Broken or Risky Cryptographic Algorithm...

0.00076EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/11/10 7:10 p.m.3 views

CVE-2025-43723

Dell PowerScale OneFS, versions prior to 9.10.1.3 and versions 9.11.0.0 through 9.12.0.0, contains a use of a broken or risky cryptographic algorithm vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure...

5.9CVSS6.5AI score0.00163EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2025/10/10 12:28 a.m.119 views

Exploit for Use of a Broken or Risky Cryptographic Algorithm in File_Away_Project File_Away

It is an exploit module/toolkit targeting unspecified products/s...

7.5CVSS7.4AI score0.0155EPSS
Exploits6
Positive Technologies
Positive Technologies
added 2025/10/07 12:0 a.m.6 views

PT-2025-41155

Name of the Vulnerable Software and Affected Versions Dell PowerProtect Data Domain versions 7.7.1.0 through 8.3.0.15 Dell PowerProtect Data Domain LTS2025 version 8.3.1.0 Dell PowerProtect Data Domain LTS2024 versions 7.13.1.0 through 7.13.1.30 Dell PowerProtect Data Domain LTS 2023 versions...

5.3CVSS6.6AI score0.00198EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2021-9873

Malicious code in bioql PyPI...

9.8CVSS9.4AI score0.00632EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-29197

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.01066EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-42986

Malicious code in bioql PyPI...

5.9CVSS6.1AI score0.0032EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2024-42891

Malicious code in bioql PyPI...

8.8CVSS8.6AI score0.00152EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.4 views

EUVD-2023-27447

Malicious code in bioql PyPI...

7.1CVSS7AI score0.00101EPSS
Exploits0References1
Rows per page
Query Builder