Lucene search
K

34 matches found

GitLab Advisory Database
GitLab Advisory Database
added 2026/03/30 12:0 a.m.14 views

nginx-ui Backup Restore Allows Tampering with Encrypted Backups

The nginx-ui backup restore mechanism allows attackers to tamper with encrypted backup archives and inject malicious configuration during restoration...

9.4CVSS5.9AI score0.00328EPSS
Exploits1References7Affected Software1
Malwarebytes
Malwarebytes
added 2025/03/25 10:43 a.m.20 views

Oops! Google accidentally deletes some users’ Maps Timeline data

Google has admitted it accidentally deleted some users' Google Maps Timeline data after a "technical issue". As reported by Forbes on March 11, users started noticing that their Google Maps Timelines had completely disappeared. At the time, we didn't know anything about the cause of this issue...

7AI score
Exploits0
OSV
OSV
added 2024/07/09 12:15 p.m.3 views

CVE-2024-39865

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. The affected application allows users to upload encrypted backup files. As part of this backup, files can be restored without correctly checking the path of the restored file. This could allow an attacker...

8.8CVSS7.2AI score0.00447EPSS
Exploits0References1
OSV
OSV
added 2024/07/09 12:15 p.m.3 views

CVE-2024-39866

A vulnerability has been identified in SINEMA Remote Connect Server All versions V3.2 SP1. The affected application allows users to upload encrypted backup files. This could allow an attacker with access to the backup encryption key and with the right to upload backup files to create a user with...

8.8CVSS5.7AI score0.00242EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/07/09 12:0 a.m.5 views

PT-2024-5084 · Siemens · Sinema Remote Connect Server

Name of the Vulnerable Software and Affected Versions: SINEMA Remote Connect Server versions prior to V3.2 SP1 Description: A vulnerability has been identified in the SINEMA Remote Connect Server that allows users to upload encrypted backup files without correctly checking the path of the restore...

9CVSS8.7AI score0.00447EPSS
Exploits0References7
SUSE CVE
SUSE CVE
added 2023/02/15 4:59 a.m.6 views

SUSE CVE-2016-6225

xbcrypt in Percona XtraBackup before 2.3.6 and 2.4.x before 2.4.5 does not properly set the initialization vector IV for encryption, which makes it easier for context-dependent attackers to obtain sensitive information from encrypted backup files via a Chosen-Plaintext attack. NOTE: this...

5.9CVSS6.5AI score0.01123EPSS
Exploits0References3
The Hacker News
The Hacker News
added 2023/01/25 7:43 a.m.3 views

LastPass Parent Company GoTo Suffers Data Breach, Customers' Backups Compromised

LastPass-owner GoTo formerly LogMeIn on Tuesday disclosed that unidentified threat actors were able to steal encrypted backups of some customers' data along with an encryption key for some of those backups in a November 2022 incident. The breach, which targeted a third-party cloud storage service...

6.5AI score
Exploits0
The Hacker News
The Hacker News
added 2022/08/12 9:9 a.m.45 views

Facebook Testing Default End-to-End Encryption and Encrypted Backups in Messenger

Social media company Meta said it will begin testing end-to-end encryption E2EE on its Messenger platform this week for select users as the default option, as the company continues to slowly add security layers to its various chat services. "If you're in the test group, some of your most frequent...

6.6AI score
Exploits0
ATTACKERKB
ATTACKERKB
added 2021/12/30 10:15 p.m.2 views

CVE-2021-45732

Netgear Nighthawk R6700 version 1.0.4.120 makes use of a hardcoded credential. It does not appear that normal users are intended to be able to manipulate configuration backups due to the fact that they are encrypted/obfuscated. By extracting the configuration using readily available public tools,...

8.8CVSS5.8AI score0.00779EPSS
Exploits0References2
OSV
OSV
added 2019/11/29 8:15 p.m.4 views

CVE-2019-5263

HiSuite with 9.1.0.305 and earlier versions and 9.1.0.305MAC and earlier versions and HwBackup with earlier versions before 9.1.1.308 have a brute forcing encrypted backup data vulnerability. Huawei smartphone user backup information can be obtained by brute forcing the password for encrypting th...

5.5CVSS6.1AI score0.00307EPSS
Exploits0References1
OSV
OSV
added 2017/03/23 4:59 p.m.4 views

UBUNTU-CVE-2016-6225

xbcrypt in Percona XtraBackup before 2.3.6 and 2.4.x before 2.4.5 does not properly set the initialization vector IV for encryption, which makes it easier for context-dependent attackers to obtain sensitive information from encrypted backup files via a Chosen-Plaintext attack. NOTE: this...

5.9CVSS6.2AI score0.01123EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2011/09/30 5:45 p.m.5 views

Russian firm Elcomsoft unveils tool to crack BlackBerry encryption security

Russian firm Elcomsoft unveils tool to crack BlackBerry encryption security A Russian security company has upgraded a phone-password cracking suite with the ability to figure out the master device password for Research in Motion's BlackBerry devices. Elcomsoft said that before it developed the...

6.7AI score
Exploits0
Duo Security Advisories
Duo Security Advisories
added 1976/01/01 12:0 a.m.14 views

DUO-PSA-2014-008: Duo Product Security Advisory

Duo Product Security Advisory Advisory ID: DUO-PSA-2014-008 Publication Date: 2014-12-22 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in the iOS Duo Mobile app that may allow credentials to be backed up in an encrypted form to a user's local machine...

0.7AI score
Exploits0
Duo Security Advisories
Duo Security Advisories
added 1976/01/01 12:0 a.m.512 views

DUO-PSA-2014-008: Duo Product Security Advisory

Duo Product Security Advisory Advisory ID: DUO-PSA-2014-008 Publication Date: 2014-12-22 Status: Confirmed, Fixed Document Revision: 2 Overview Duo Security has identified an issue in the iOS Duo Mobile app that may allow credentials to be backed up in an encrypted form to a user's local machine...

0.8AI score
Exploits0
Rows per page
Query Builder