CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Malwarebytes•added 2017/06/29 4:39 p.m.•42 views

EternalPetya and the lost Salsa20 key

We have recently been facing a huge outbreak of a new Petya-like malware armed with an infector similar to WannaCry. The research is still in progress, and the full report will be published soon. In this post, we will focus on some new important aspects of the current malware. The low-level attac...

6.5AI score

Hacker One•added 2017/06/23 2:27 p.m.•129 views

Gratipay: Possible User Session Hijack using Invalid HTTPS certificate on inside.gratipay.com domain

Good evening team! This is a theoretical risk but I thought it was still worth reporting since every endpoint and any data flowing through inside.gratipay.com is unencrypted. POC https://inside.gratipay.com And every sub directory under inside.gratipay.com. Description Since the certificate is on...

0.3AI score

myhack58•added 2017/06/21 12:0 a.m.•38 views

Wannacry depth of analysis: the first stage tasksche-vulnerability warning-the black bar safety net

WannaCry ransomware is a 2017 of the most popular ransomware, which uses a Microsoft vulnerability in the global range attacks make the world more than 100 countries, hundreds of thousands of users by the impact. Has a global range of network security education for all. As a security industry...

7.1AI score

Prion•added 2017/06/09 4:29 p.m.•12 views

Design/Logic Flaw

Untrusted search path vulnerability in Installers for Specification check program social insurance Ver. 9.00 and earlier, TODOKESHO print program Ver. 5.00 and earlier, Device data encryption program Ver. 1.00 and earlier, and TODOKESHO creation program Ver. 15.00 and earlier available prior to...

6.8CVSS7.5AI score0.00223EPSS

Exploits0References6Affected Software4

CVE•added 2017/06/09 4:0 p.m.•35 views

CVE-2016-7818

CVE-2016-7818 is an Untrusted search path vulnerability in Japan Pension Service installers: Specification check program (social insurance) v9.00 and earlier, TODOKESHO print program v5.00 and earlier, Device data encryption program v1.00 and earlier, and TODOKESHO creation program v15.00 and ear...

7.8CVSS7.7AI score0.00223EPSS

Exploits0References6Affected Software4

Cvelist•added 2017/06/09 4:0 p.m.•11 views

CVE-2016-7818

7.8AI score0.00223EPSS

Exploits0References6

Schneier on Security•added 2017/06/01 3:59 p.m.•32 views

Passwords at the Border

The password-manager 1Password has just implemented a travel mode that tries to protect users while crossing borders. It doesn't make much sense. To enable it, you have to create a list of passwords you feel safe traveling with, and then you can turn on the mode that only gives you access to thos...

7AI score

Veracode•added 2017/05/16 1:26 a.m.•13 views

Insecure Encryption

aescrypt uses a vulnerable encryption method. The method is vulnerable because it does not randomize the CBC IV when encrypting and decrypting data. This allows attackers to easily defeat the cryptographic mechanism by guessing the CBC IV...

7.5CVSS7.3AI score0.003EPSS

Exploits0References1Affected Software1

RedHat Linux•added 2017/05/09 4:41 p.m.•2 views

SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)

A flaw was found in the way the DES/3DES cipher was used as part of the TLS/SSL protocol. A man-in-the-middle attacker could use this flaw to recover some plaintext data by capturing large amounts of encrypted traffic between TLS/SSL server and client if the communication used a DES/3DES based...

OSV•added 2017/04/27 4:47 p.m.•2 views

USN-3270-1 nss vulnerabilities

Karthik Bhargavan and Gaetan Leurent discovered that the DES and Triple DES ciphers were vulnerable to birthday attacks. A remote attacker could possibly use this flaw to obtain clear text data from long encrypted sessions. This update causes NSS to limit use of the same symmetric key...

9.8CVSS7AI score0.40993EPSS

Exploits7References3

RedHat Linux•added 2017/04/26 10:19 a.m.•3 views

httpd: Padding Oracle in Apache mod_session_crypto

It was discovered that the modsessioncrypto module of httpd did not use any mechanisms to verify integrity of the encrypted session data stored in the user's browser. A remote attacker could use this flaw to decrypt and modify session data using a padding oracle attack...

7.5CVSS7.2AI score0.4168EPSS

Exploits4References6

Tenable Nessus•added 2017/04/13 12:0 a.m.•73 views

Scientific Linux Security Update : httpd on SL7.x x86_64 (20170412)

Security Fixes : - It was discovered that the modsessioncrypto module of httpd did not use any mechanisms to verify integrity of the encrypted session data stored in the user's browser. A remote attacker could use this flaw to decrypt and modify session data using a padding oracle attack...

7.5CVSS6.6AI score0.4168EPSS

Exploits4References4

OSV•added 2017/04/02 1:59 a.m.•2 views

CVE-2017-2380

An issue was discovered in certain Apple products. iOS before 10.3 is affected. The issue involves the Simple Certificate Enrollment Protocol SCEP implementation in the "Profiles" component. It allows remote attackers to bypass cryptographic protection mechanisms by leveraging DES support...

7.5CVSS5.8AI score0.00052EPSS

Exploits0References2

RedHat Linux•added 2017/03/08 1:22 p.m.•3 views

SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)

RedHat Linux•added 2017/02/28 8:29 a.m.•1 views

SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)

RedHat Linux•added 2017/02/28 8:19 a.m.•4 views

SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)

RedHat Linux•added 2017/02/28 8:19 a.m.•4 views

SSL/TLS: Birthday attack against 64-bit block ciphers (SWEET32)