690 matches found
CVE-2023-6176
The connected documents confirm CVE-2023-6176 is a Linux kernel issue in the cryptographic algorithm scatterwalk API. A null pointer dereference can be triggered when a local user constructs a malicious packet with specific socket configuration, potentially crashing the system or enabling privile...
CVE-2023-6176
A null pointer dereference flaw was found in the Linux kernel API for the cryptographic algorithm scatterwalk functionality. This issue occurs when a user constructs a malicious packet with specific socket configuration, which could allow a local user to crash the system or escalate their...
New SSH Vulnerability
This is interesting: For the first time, researchers have demonstrated that a large portion of cryptographic keys used to protect data in computer-to-server SSH traffic are vulnerable to complete compromise when naturally occurring computational errors occur while the connection is being...
CVE-2023-46894
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via weak cryptographic algorithm...
esptool allows attackers to view sensitive information via weak cryptographic algorithm
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via weak cryptographic algorithm...
CVE-2023-46894
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via weak cryptographic algorithm...
PYSEC-2023-234
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via weak cryptographic algorithm...
CVE-2023-46894
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via weak cryptographic algorithm...
PYSEC-2023-234
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via weak cryptographic algorithm...
Information disclosure
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via weak cryptographic algorithm...
CVE-2023-46894
Removed by vendor...
PT-2023-30256 · Esptool · Esptool
Name of the Vulnerable Software and Affected Versions: esptool version 4.6.2 Description: An issue in esptool allows attackers to view sensitive information due to the use of a weak cryptographic algorithm. Recommendations: For esptool version 4.6.2, at the moment, there is no information about a...
CVE-2023-46894
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via weak cryptographic algorithm...
CVE-2023-46894
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via weak cryptographic algorithm...
CVE-2023-46894
Affected software: esptool 4.6.2. The CVE-2023-46894 entry describes an information disclosure due to a weak cryptographic algorithm used by esptool, enabling attackers to view sensitive data. The public documents confirm the vulnerability and its impact on confidentiality (CVE base score 7.5, HI...
RHEL 9 : edk2 (RHSA-2023:6330)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6330 advisory. EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware f...
CVE-2023-39252
Dell SCG Policy Manager 5.16.00.14 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information...
CVE-2023-39252
Dell EMC SCG Policy Manager 5.16.00.14 is affected by a broken cryptographic algorithm vulnerability that enables remote unauthenticated MitM attacks to obtain sensitive information. Root cause: cryptographic algorithm flaw in the policy manager; CVSS metrics indicate high confidentiality impact ...
CVE-2023-39252
Dell SCG Policy Manager 5.16.00.14 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information...
Siemens LOGO! 8 BM Use of a Broken or Risky Cryptographic Algorithm (CVE-2020-25230)
A vulnerability has been identified in LOGO! 8 BM incl. SIPLUS variants All versions V8.3. Due to the usage of an outdated cipher mode on port 10005/tcp, an attacker could extract the encryption key from a captured communication with the device. This plugin only works with Tenable.ot. Please visi...