Hcl Technologies Hcl Traveler Companion 加密问题漏洞

Hcl Technologies Hcl Traveler Companion is an ios Iphone and Ipad application from Hcl Technologies India. It is used to read encrypted Hcl Notes emails on Apple devices. Hcl Technologies HCL Traveler Companion suffers from an encryption issue vulnerability that stems from an iOS weak encryption...

mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2020)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Encryption. Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server...

IBM Data Risk Manager 加密问题漏洞

IBM Data Risk Manager is a data risk manager from IBM Corporation of the United States. The product supports discovery, analysis and visualization of business risk data, etc. A security vulnerability exists in IBM Data Risk Manager iDNA 2.0.6, which could be exploited by an attacker to decrypt...

CVE-2021-41829

Zoho ManageEngine Remote Access Plus before 10.1.2121.1 relies on the application's build number to calculate a certain encryption key...

mysql: Server: Security: Encryption unspecified vulnerability (CPU Oct 2020)

Vulnerability in the MySQL Server product of Oracle MySQL component: Server: Security: Encryption. Supported versions that are affected are 8.0.21 and prior. Easily exploitable vulnerability allows low privileged attacker with network access via multiple protocols to compromise MySQL Server...

Debian DSA-4974-1 : nextcloud-desktop - security update

The remote Debian 10 / 11 host has packages installed that are affected by multiple vulnerabilities as referenced in the dsa-4974 advisory. - Nextcloud Desktop Client before 3.3.1 is vulnerable to improper certificate validation due to lack of SSL certificate verification when using the Register...

openSUSE: Security Advisory for apache2-mod_auth_openidc (openSUSE-SU-2021:1277-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

Design/Logic Flaw

In RIOT-OS 2021.01, nonce reuse in 802.15.4 encryption in the ieee820154security component allows attackers to break encryption by triggering reboots...

Matrix 加密问题漏洞

Matrix is an ambitious new ecosystem for open federated instant messaging and VoIP. A cryptographic issue vulnerability exists in versions of Matrix Javascript SDK prior to 12.4.1, which stems from a logic error in a device's room key sharing functionality that results in insufficient...

CVE-2021-35526

Backup file without encryption vulnerability is found in Hitachi ABB Power Grids System Data Manager – SDM600 allows attacker to gain access to sensitive information. This issue affects: Hitachi ABB Power Grids System Data Manager – SDM600 1.2 versions prior to FP2 HF6 Build Nr. 1.2.14002.257...

IBM Sterling Secure Proxy 加密问题漏洞

IBM Sterling Secure Proxy creates a security barrier for trusted networks by preventing direct connections between external partners and internal servers. IBM Sterling Secure Proxy versions 6.0.1, 6.0.2, 2.4.3.2, and 3.4.3.2 contain a weak encryption algorithm vulnerability. An attacker could...

PT-2021-6528 · Nextcloud +1 · Nextcloud Desktop Client +1

Name of the Vulnerable Software and Affected Versions: Nextcloud Desktop Client versions prior to 3.3.0 Description: The issue is related to the end-to-end encryption feature of the Nextcloud Desktop Client, where the client fails to check if a private key belongs to a previously downloaded publi...

CVE-2021-27499

Ypsomed mylife Cloud, mylife Mobile Application, Ypsomed mylife Cloud: All versions prior to 1.7.2, Ypsomed mylife App: All versions prior to 1.7.5,The application layer encryption of the communication protocol between the Ypsomed mylife App and mylife Cloud uses non-random IVs, which allows...

Charm 加密问题漏洞

Charm is Charm is a framework for rapidly prototyping advanced cryptosystems. A cryptographic issue vulnerability exists in Charm version 0.43. Using this vulnerability any single user can decrypt DAC-MACS or MA-ABE-YJ14 data...

iDrive RemotePC 加密问题漏洞

iDrive RemotePC is remote control software from iDrive, Inc. A vulnerability in encryption issues exists in iDrive RemotePC versions prior to 7.6.48 on Windows, which stems from an error in the configuration of the product during operation, among other things. An unauthorized attacker could explo...

Schneider Electric EcoStruxure Control Expert 安全漏洞

Schneider Electric EcoStruxure Control Expert formerly known as Unity Pro is a suite of programming software for Schneider Electric logic controller products from Schneider Electric, France. A security vulnerability exists in a number of Schneider Electric EcoStruxure Control Expert products, whi...

IBM Cloud Pak for Applications 加密问题漏洞

IBM Cloud Pak for Applications is an application from IBM USA, Inc. A security vulnerability exists in IBM Cloud Pak for Applications version 4.3, which stems from the application's use of an improper encryption algorithm. An attacker could exploit the vulnerability to be able to decrypt highly...

IBM Tivoli Netcool Impact 加密问题漏洞

IBM Tivoli Netcool/Impact is a suite of network management software from IBM, USA. The software has the ability to automate business-critical functions and provide a platform that provides unified access to real-time data, events and indicators. A security vulnerability exists in IBM Tivoli...

MDT AutoSave 加密问题漏洞

MDT AutoSave is a software application. It provides an automated change management function. MDT AutoSave is vulnerable to an encryption issue that could allow an attacker to break the encryption and gain access to the system...

IBM Guardium Data Encryption 安全漏洞

IBM Guardium Data Encryption GDE is a software application from IBM, USA. It provides a data security and compliance solution. A security vulnerability exists in IBM Guardium Data Encryption GDE 4.0.0.4, which arises from a vulnerability that allows a remote attacker to brute-force break account...