Lucene search
K

1127 matches found

NVD
NVD
added 2026/05/19 10:16 a.m.20 views

CVE-2026-31986

Use of Hard-coded Cryptographic Key vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue...

9.1CVSS0.00421EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/19 9:34 a.m.6 views

CVE-2026-31986

Use of Hard-coded Cryptographic Key vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue...

5.8AI score0.00421EPSS
Exploits0References2
EUVD
EUVD
added 2026/05/19 9:34 a.m.12 views

EUVD-2026-30873

Use of Hard-coded Cryptographic Key vulnerability in Apache OFBiz. This issue affects Apache OFBiz: before 24.09.06. Users are recommended to upgrade to version 24.09.06, which fixes the issue...

9.1CVSS5.8AI score0.00421EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/05/15 2:5 p.m.13 views

CVE-2026-43336

A flaw was found in the Linux kernel's ChaCha cryptographic algorithm implementation. The permutedstate local variable, which is sufficient to compute the original cryptographic key, was not properly zeroized before leaving its scope. This oversight could allow an attacker to recover the...

7.5CVSS5.8AI score0.00425EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/12 6:30 p.m.7 views

EUVD-2026-29730

A use of hard-coded cryptographic key vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.2, FortiClientWindows 7.2 all versions may allow attacker to information disclosure via...

2.3CVSS5.8AI score0.00097EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/05/12 4:54 p.m.36 views

CVE-2026-44278

A use of hard-coded cryptographic key vulnerability in Fortinet FortiClientWindows 7.4.0 through 7.4.2, FortiClientWindows 7.2 all versions may allow attacker to information disclosure via...

2.3CVSS0.00097EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/05/10 9:0 a.m.8 views

CVE-2026-8243 Industrial Application Software IAS Canias ERP JNLP Deployment Endpoint hard-coded key

A vulnerability was determined in Industrial Application Software IAS Canias ERP 8.03. This affects an unknown function of the component JNLP Deployment Endpoint. Executing a manipulation can lead to use of hard-coded cryptographic key . The attack may be performed from remote. The vendor was...

6.9CVSS5.8AI score0.00292EPSS
Exploits0References4
EUVD
EUVD
added 2026/05/10 9:0 a.m.10 views

EUVD-2026-28992

A vulnerability was determined in Industrial Application Software IAS Canias ERP 8.03. This affects an unknown function of the component JNLP Deployment Endpoint. Executing a manipulation can lead to use of hard-coded cryptographic key . The attack may be performed from remote. The vendor was...

6.9CVSS5.8AI score0.00292EPSS
Exploits0References3
EUVD
EUVD
added 2026/05/06 6:30 p.m.12 views

EUVD-2026-27840

Use of Hard-coded Cryptographic Key vulnerability in WatchGuard Agent on Windows allows Inclusion of Code in Existing Process.This issue affects WatchGuard Agent: before 1.25.03.0000...

8.5CVSS5.8AI score0.00108EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/06 3:46 p.m.4 views

CVE-2026-6787

Use of Hard-coded Cryptographic Key vulnerability in WatchGuard Agent on Windows allows Inclusion of Code in Existing Process.This issue affects WatchGuard Agent: before 1.25.03.0000...

8.5CVSS5.8AI score0.00108EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2026/05/06 3:46 p.m.8 views

CVE-2026-6787 Usage of a hard-coded cryptographic key in WatchGuard Agent allows inclusion of code into existing process

Use of Hard-coded Cryptographic Key vulnerability in WatchGuard Agent on Windows allows Inclusion of Code in Existing Process.This issue affects WatchGuard Agent: before 1.25.03.0000...

8.5CVSS5.8AI score0.00108EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/05/06 3:46 p.m.53 views

CVE-2026-6787 Usage of a hard-coded cryptographic key in WatchGuard Agent allows inclusion of code into existing process

Use of Hard-coded Cryptographic Key vulnerability in WatchGuard Agent on Windows allows Inclusion of Code in Existing Process.This issue affects WatchGuard Agent: before 1.25.03.0000...

8.5CVSS0.00108EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/05/06 12:0 a.m.11 views

PT-2026-37646

Name of the Vulnerable Software and Affected Versions WatchGuard Agent versions prior to 1.25.03.0000 Description The use of a hard-coded cryptographic key in WatchGuard Agent on Windows allows for the inclusion of code in an existing process. Recommendations Update to version 1.25.03.0000 or lat...

8.5CVSS5.9AI score0.00108EPSS
Exploits0References5
IBM Security Bulletins
IBM Security Bulletins
added 2026/05/04 2:4 p.m.6 views

Security Bulletin:WebSphere Application Server Liberty could provide weaker than expected security (CVE-2025-14923)

Summary WebSphere Application Server Liberty could provide weaker than expected security Vulnerability Details CVEID:CVE-2025-14923 DESCRIPTION: IBM WebSphere Application Server - Liberty 17.0.0.3 through 26.0.0.2 IBM WebSphere Application Server Liberty could provide weaker than expected securit...

9.8CVSS5.8AI score0.00173EPSS
Exploits0Affected Software11
Cvelist
Cvelist
added 2026/04/19 10:15 p.m.24 views

CVE-2026-6580 liangliangyy DjangoBlog Amap API Call views.py hard-coded key

A security vulnerability has been detected in liangliangyy DjangoBlog up to 2.1.0.0. Affected is an unknown function of the file owntracks/views.py of the component Amap API Call Handler. Such manipulation of the argument key leads to use of hard-coded cryptographic key . The attack may be launch...

7.5CVSS0.00284EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/04/09 3:52 p.m.1 views

CVE-2026-33266

Use of Hard-coded Cryptographic Key vulnerability in Apache OpenMeetings. The remember-me cookie encryption key is set to default value in openmeetings.properties and not being auto-rotated. In case OM admin hasn't changed the default encryption key, an attacker who has stolen a cookie from a...

5.9AI score0.00234EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/04/09 2:39 p.m.6 views

CVE-2026-20709

A flaw was found in some Intel Pentium Processor Silver Series, Intel Celeron Processor J Series, and Intel Celeron Processor N Series. This vulnerability arises from the use of a default cryptographic key in the hardware. A sophisticated attacker with physical access and privileged user access...

6.6CVSS5.9AI score0.00111EPSS
Exploits0References4
NVD
NVD
added 2026/04/08 7:25 p.m.4 views

CVE-2026-20709

Use of Default Cryptographic Key in the hardware for some IntelR PentiumR Processor Silver Series, IntelR CeleronR Processor J Series, IntelR CeleronR Processor N Series may allow an escalation of privilege. Hardware reverse engineer adversary with a privileged user combined with a high complexit...

6.6CVSS0.00111EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/08 6:20 p.m.17 views

CVE-2026-20709

Use of Default Cryptographic Key in the hardware for some IntelR PentiumR Processor Silver Series, IntelR CeleronR Processor J Series, IntelR CeleronR Processor N Series may allow an escalation of privilege. Hardware reverse engineer adversary with a privileged user combined with a high complexit...

6.6CVSS0.00111EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/08 6:20 p.m.2 views

CVE-2026-20709

Use of Default Cryptographic Key in the hardware for some IntelR PentiumR Processor Silver Series, IntelR CeleronR Processor J Series, IntelR CeleronR Processor N Series may allow an escalation of privilege. Hardware reverse engineer adversary with a privileged user combined with a high complexit...

6.6CVSS5.8AI score0.00111EPSS
Exploits0References1
Rows per page
Query Builder