Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

CVE
CVEadded 2026/04/17 7:52 p.m.4 views

CVE-2026-32650

The CVE-2026-32650 entry applies to Anviz CrossChex Standard. The description states that an attacker can manipulate the TDS7 PreLogin to disable encryption, causing database credentials to be sent in plaintext and enabling unauthorized database access. This highlights a credential exposure risk ...

7.5CVSS5.7AI score0.00028EPSS
Exploits0References3Affected Software1
ATTACKERKB
ATTACKERKBadded 2026/04/17 7:52 p.m.0 views

CVE-2026-32650

Anviz CrossChex Standard is vulnerable when an attacker manipulates the TDS7 PreLogin to disable encryption, causing database credentials to be sent in plaintext and enabling unauthorized database access...

7.5CVSS5.7AI score0.00028EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2025/08/24 12:0 a.m.1 views

Linux Distros Unpatched Vulnerability : CVE-2018-16758

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Missing message authentication in the meta-protocol in Tinc VPN version 1.0.34 and earlier allows a man- in-the-middle attack to disable the encryption of VPN...

5.9CVSS5.8AI score0.0011EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2024/05/15 12:0 a.m.2 views

PT-2024-40434 · Laravel · Laravel

Name of the Vulnerable Software and Affected Versions: Laravel affected versions not specified Description: The issue concerns applications that use the "cookie" session driver and expose an encryption oracle, allowing for remote code execution. An encryption oracle is a mechanism where arbitrary...

9.9CVSS7.9AI score
Exploits0References4
CNNVD
CNNVDadded 2021/03/04 12:0 a.m.1 views

Xerox AltaLink 安全漏洞

Xerox AltaLink is a hardware device from the American Xerox Xerox company. It provides a printing and copying function. A security vulnerability exists in Xerox AltaLink that allows a user with administrative privileges to disable data encryption on the device. The following products and versions...

4.9CVSS7.3AI score0.00172EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2020/11/10 12:0 a.m.2 views

PT-2020-6348

Name of the Vulnerable Software and Affected Versions Modicon M221 all versions Modicon M100 affected versions not specified Modicon M200 affected versions not specified Description A CWE-326: Inadequate Encryption Strength issue exists that could allow an attacker to break the encryption key whe...

7.8CVSS7.1AI score0.00022EPSS
Exploits0References11
OSV
OSVadded 2018/10/10 9:29 p.m.0 views

UBUNTU-CVE-2018-16758

Missing message authentication in the meta-protocol in Tinc VPN version 1.0.34 and earlier allows a man-in-the-middle attack to disable the encryption of VPN packets...

5.9CVSS6.2AI score0.0011EPSS
Exploits0References3
RedHat Linux
RedHat Linuxadded 2016/04/12 7:15 p.m.1 views

samba: Man-in-the-middle attacks possible with NTLMSSP authentication

Several flaws were found in Samba's implementation of NTLMSSP authentication. An unauthenticated, man-in-the-middle attacker could use this flaw to clear the encryption and integrity flags of a connection, causing data to be transmitted in plain text. The attacker could also force the client or...

5.9CVSS6.6AI score0.17748EPSS
Exploits0References5
Rows per page
Query Builder