CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Vulnerability in the cryptographic algorithm of AndSoft's e-TMS v25.03, which uses MD5 to encrypt passwords. MD5 is a cryptographically vulnerable hash algorithm and is no longer considered secure for storing or transmitting passwords. It is vulnerable to collision attacks and can be easily crack...

6.9CVSS0.00025EPSS

Exploits0References1

Cvelist•added 2025/09/30 1:17 p.m.•11 views

CVE-2025-9231 Timing side-channel in SM2 algorithm on 64 bit ARM

Issue summary: A timing side-channel which could potentially allow remote recovery of the private key exists in the SM2 algorithm implementation on 64 bit ARM platforms. Impact summary: A timing side-channel in SM2 signature computations on 64 bit ARM platforms could allow recovering the private...

0.00034EPSS

Exploits0References5

Cvelist•added 2025/09/23 10:8 p.m.•4 views

CVE-2025-59484 AutomationDirect CLICK PLUS Use of a Broken or Risky Cryptographic Algorithm

The use of a broken or risky cryptographic algorithm was discovered in firmware version 3.60 of the Click Plus PLC. The vulnerability relies on the fact that the software uses an insecure implementation of the RSA encryption algorithm...

8.7CVSS0.00017EPSS

Exploits0References2

OSV•added 2025/09/02 5:15 p.m.•1 views

CVE-2025-9828

A vulnerability was determined in Tenda CP6 11.10.00.243. The affected element is the function sub2B7D04 of the component uhttp. Executing manipulation can lead to risky cryptographic algorithm. The attack may be launched remotely. This attack is characterized by high complexity. The exploitabili...

5.9CVSS5.3AI score0.00134EPSS

Exploits1References5

Cvelist•added 2025/08/19 4:2 p.m.•8 views

CVE-2025-9146 Linksys E5600 Firmware checkFw.sh verify_gemtek_header risky encryption

A flaw has been found in Linksys E5600 1.1.0.26. The affected element is the function verifygemtekheader of the file checkFw.sh of the component Firmware Handler. Executing manipulation can lead to risky cryptographic algorithm. The attack may be launched remotely. The attack requires a high leve...

7.5CVSS0.00306EPSS

Exploits1References5

RedhatCVE•added 2025/07/23 5:18 p.m.•6 views

CVE-2025-30477

Dell PowerScale OneFS, versions prior to 9.11.0.0, contains a use of a broken or risky cryptographic algorithm vulnerability. A high privileged attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure...

4.9CVSS6.2AI score0.00126EPSS

Exploits0References1

NVD•added 2025/07/21 5:15 p.m.•3 views

CVE-2025-30477

4.9CVSS0.00126EPSS

Exploits0References1

Cvelist•added 2025/07/21 4:32 p.m.•6 views

CVE-2025-30477

4.4CVSS0.00126EPSS

Exploits0References1

CVE•added 2025/07/21 4:32 p.m.•14 views

CVE-2025-30477

Dell PowerScale OneFS prior to version 9.11.0.0 is affected by a use of a broken or risky cryptographic algorithm, which could enable information disclosure by a high-privilege attacker with remote access. Affected software: Dell PowerScale OneFS; vulnerability type: insecure cryptographic algori...

4.9CVSS6.3AI score0.00126EPSS

Exploits0References1Affected Software1

RedhatCVE•added 2025/07/10 5:18 p.m.•2 views

CVE-2025-49756

Use of a broken or risky cryptographic algorithm in Office Developer Platform allows an authorized attacker to bypass a security feature locally...

3.3CVSS6.4AI score0.0014EPSS

Exploits0References1

Vulnrichment•added 2025/07/09 3:32 a.m.•3 views

CVE-2025-7214 FNKvision FNK-GU2 MD5 shadow risky encryption

A vulnerability classified as problematic was found in FNKvision FNK-GU2 up to 40.1.7. Affected by this vulnerability is an unknown functionality of the file /etc/shadow of the component MD5. The manipulation leads to risky cryptographic algorithm. It is possible to launch the attack on the...

1.6CVSS6.9AI score0.00041EPSS

Exploits0References4

Positive Technologies•added 2025/07/09 12:0 a.m.•1 views

PT-2025-28840 · Unknown · Fnkvision Fnk-Gu2

Name of the Vulnerable Software and Affected Versions: FNKvision FNK-GU2 versions through 40.1.7 Description: A problematic vulnerability exists due to a risky cryptographic algorithm related to an unknown functionality of the file /etc/shadow within the MD5 component. The attack can be launched ...

1.6CVSS3.4AI score0.00041EPSS

Exploits0References7

NVD•added 2025/07/08 5:16 p.m.•5 views

CVE-2025-49756

Use of a broken or risky cryptographic algorithm in Office Developer Platform allows an authorized attacker to bypass a security feature locally...

3.3CVSS0.0014EPSS

Exploits0References1

CVE•added 2025/07/08 4:57 p.m.•27 views

CVE-2025-49756

CVE-2025-49756 affects Microsoft Office Developer Platform. Description states that use of a broken or risky cryptographic algorithm allows an authorized attacker to bypass a security feature locally. Connected PT-2025-28630 references affected platform and notes no explicit fix version informati...

3.3CVSS6.6AI score0.0014EPSS

Exploits0References1Affected Software1