PT-2024-31448 · Uci Software Gmbh · Uci Idol 2

Name of the Vulnerable Software and Affected Versions: UCI IDOL 2 versions through 2.12 Description: An issue was discovered in the encryption mechanism used by UCI IDOL 2. Data sent between the client and server is encrypted, but the key is derived from a static string "c2007 UCI Software GmbH...

Dell InsightIQ Encryption Issue Vulnerability

Dell InsightIQ is a performance monitoring and reporting tool from Dell USA. A vulnerability in encryption issues exists in versions of Dell InsightIQ prior to 5.0.1, which can be exploited by an unauthenticated, remote attacker to cause information disclosure...

Dell PowerScale OneFS Encryption Issue Vulnerability (CNVD-2024-37424)

Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. Dell PowerScale OneFS suffers from a cryptographic issue vulnerability that arises from the inclusion of the use of corrupted or risky encryption algorithms. An...

IBM Security Access Manager Encryption Problem Vulnerability (CNVD-2024-30216)

IBM Security Access Manager is a product for information security management applications from International Business Machines IBM. The product enables access management control through integrated appliances for web, mobile and cloud computing. IBM Security Access Manager suffers from an encrypti...

PT-2024-13832 · Samsung · Exynos

Name of the Vulnerable Software and Affected Versions: Samsung Mobile Processor, Wearable Processor, and Modem Exynos versions 980 through 2200 Samsung Mobile Processor, Wearable Processor, and Modem Exynos versions 1280 through 1380 Samsung Mobile Processor, Wearable Processor, and Modem Exynos...

PT-2024-19947 · Hcl · Hcl Dryice Optibot Reset Station

Name of the Vulnerable Software and Affected Versions: HCL DRYiCE Optibot Reset Station affected versions not specified Description: The issue concerns insecure encryption of One-Time Passwords OTPs in the HCL DRYiCE Optibot Reset Station. This could potentially allow an attacker with access to t...

SUSE-SU-2024:1773-1 Security update for opensc

This update for opensc fixes the following issues: - CVE-2023-5992: Fixed a side-channel leaks while stripping encryption PKCS1 padding bsc1219386...

IBM WebSphere Application Server Encryption Problem Vulnerability (CNVD-2024-20496)

IBM WebSphere Application Server WAS is an application server product from International Business Machines IBM. The product is a platform for JavaEE and Web services applications and is the foundation of the IBM WebSphere software platform. An encryption issue vulnerability exists in IBM WebSpher...

CVE-2024-28065

In Unify CP IP Phone firmware 1.10.4.3, files are not encrypted and contain sensitive information such as the root password hash...

IBM WebSphere Application Server 加密问题漏洞

IBM WebSphere Application Server WAS is an application server product from International Business Machines IBM. The product is a platform for JavaEE and Web services applications and is the foundation of the IBM WebSphere software platform. An encryption issue vulnerability exists in IBM WebSpher...

Dell PowerScale OneFS Encryption Issue Vulnerability (CNVD-2024-16188)

Dell PowerScale OneFS is an operating system from Dell USA. PowerScale OneFS operating system that provides horizontal scaling of NAS. Dell PowerScale OneFS suffers from an encryption issue vulnerability that stems from the use of a corrupted encryption algorithm, which can be exploited by an...

IBM MQ Operator Encryption Issue Vulnerability

IBM MQ Operator is a tool from International Business Machines IBM for managing the lifecycle of IBM MQ Queue Manager. IBM MQ Operator suffers from a cryptographic issue vulnerability that stems from the use of a weaker-than-expected encryption algorithm, which could be exploited by an attacker t...

Vyper Encryption Issue Vulnerability

Vyper is the Pythonic smart contract language for EVM. A cryptographic issue exists in Vyper version 0.3.10 and prior versions, which is caused by a miscalculation of the "height" variable...

CVE-2023-50126

Missing encryption in the RFID tags of the Hozard alarm system Alarmsysteem v1.0 allow attackers to create a cloned tag via brief physical proximity to one of the original tags, which results in an attacker being able to bring the alarm system to a disarmed state...

MOXA ioLogik E1200 Series Encryption Issue Vulnerability

MOXA ioLogik E1200 Series is a series of general-purpose controllers and I/O devices from MOXA, China. The MOXA ioLogik E1200 Series suffers from an encryption issue vulnerability that can be exploited by attackers to obtain sensitive information...

IBM Spectrum Scale Encryption Problem Vulnerability (CNVD-2023-10112315)

IBM Spectrum Scale is a suite of scalable data and file management solutions from International Business Machines IBM based on IBM GPFS, an enterprise file management system optimized for petabyte-scale storage management. The product supports helping customers reduce storage costs while improvin...

PYSEC-2023-302

An issue in /upydev/keygen.py in upydev v0.4.3 allows attackers to decrypt sensitive information via weak encryption padding...

CVE-2023-48055

SuperAGI v0.0.13 was discovered to use a hardcoded key for encryption operations. This vulnerability can lead to the disclosure of information and communications...

Zoom Client Encryption Issue Vulnerability

Zoom Client is a video conferencing client application from Zoom Inc. that supports multiple platforms. Zoom Client has an encryption issue vulnerability that stems from an encryption issue with in-conference chat. It may allow a privileged user to disclose information via network access...

Qualcomm Chipsets Security Vulnerability

Qualcomm Chipsets are a family of chipsets from Qualcomm Incorporated USA. A security vulnerability exists in Qualcomm Chipsets that stems from an encryption issue in HLOS during key management...