Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Cvelist
Cvelistadded 2023/06/14 2:5 a.m.20 views

CVE-2023-24937 Windows CryptoAPI Denial of Service Vulnerability

...

6.5CVSS8.2AI score0.05156EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/06/13 12:0 a.m.3 views

Microsoft Windows CryptoAPI 安全漏洞

Microsoft Windows CryptoAPI is a cryptographic compiler added to the Windows operating system by Microsoft. CryptoAPI supports synchronous and asynchronous key encryption and the management of digital certificates in the operating system as the basis for data encryption and decryption functions. ...

6.5CVSS7.1AI score0.05016EPSS
Exploits0References2
NCSC
NCSCadded 2021/01/12 12:0 a.m.1 views

Vulnerabilities found in Microsoft Windows

Microsoft fixes multiple vulnerabilities in Windows. A malicious party could potentially exploit the vulnerabilities to: - cause a denial-of-service, - bypass security measures, - execute arbitrary code, - obtain elevated privileges, - gain access to sensitive data. Below is a summary of the...

9.8CVSS7.3AI score0.75972EPSS
Exploits3
Vulnrichment
Vulnrichmentadded 2020/01/14 11:11 p.m.3 views

CVE-2020-0601

A spoofing vulnerability exists in the way Windows CryptoAPI Crypt32.dll validates Elliptic Curve Cryptography ECC certificates.An attacker could exploit the vulnerability by using a spoofed code-signing certificate to sign a malicious executable, making it appear the file was from a trusted,...

6.5AI score0.94093EPSS
Exploits14References3
EUVD
EUVDadded 2009/10/14 10:0 a.m.0 views

EUVD-2009-2506

Integer overflow in the CryptoAPI component in Microsoft Windows 2000 SP4, Windows XP SP2 and SP3, Windows Server 2003 SP2, Windows Vista Gold, SP1, and SP2, Windows Server 2008 Gold, SP2, and R2, and Windows 7 allows man-in-the-middle attackers to spoof arbitrary SSL servers and other entities v...

7.5CVSS6.4AI score0.14509EPSS
Exploits1References3
Tenable Nessus
Tenable Nessusadded 2002/10/24 12:0 a.m.31 views

MS02-050: Certificate Validation Flaw Could Enable Identity Spoofing (328145)

The remote host contains a version of the CryptoAPI that could allow an attacker to spoof the identity of another user with malformed SSL certificates. C Tenable Network Security, Inc. include"compat.inc"; if description scriptid11145; scriptversion"1.49"; scriptcvsdate"Date: 2018/11/15 20:50:29"...

7.5CVSS5.5AI score0.17339EPSS
Exploits1References3
NVD
NVDadded 2002/10/04 4:0 a.m.27 views

CVE-2002-0862

The 1 CertGetCertificateChain, 2 CertVerifyCertificateChainPolicy, and 3 WinVerifyTrust APIs within the CryptoAPI for Microsoft products including Microsoft Windows 98 through XP, Office for Mac, Internet Explorer for Mac, and Outlook Express for Mac, do not properly verify the Basic Constraints ...

6.8CVSS6.2AI score0.17339EPSS
Exploits0References8
Rows per page
Query Builder