Lucene search
K

148 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-19492

Malicious code in bioql PyPI...

8.6CVSS6.6AI score0.00287EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-31165

Malicious code in bioql PyPI...

7.2CVSS7.4AI score0.00523EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2025/09/29 12:0 a.m.4 views

GE Multilin UR Family Inadequate Encryption Strength (CVE-2013-2566)

Prior to UR firmware Version 8.1x, UR supported various encryption and MAC algorithms for SSH communication, some of which are weak. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more information. %NASLMINLEVEL 80900 C Tenable, Inc...

5.9CVSS7.4AI score0.84424EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/08/30 6:17 p.m.4 views

CVE-2025-46409

Inadequate encryption strength issue exists in SS1 Ver.16.0.0.10 and earlier Media version:16.0.0a and earlier. If this vulnerability is exploited, a function that requires authentication may be accessed by a remote unauthenticated attacker...

8.7CVSS8AI score0.00215EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/08/28 8:27 a.m.8 views

CVE-2025-46409

Inadequate encryption strength issue exists in SS1 Ver.16.0.0.10 and earlier Media version:16.0.0a and earlier. If this vulnerability is exploited, a function that requires authentication may be accessed by a remote unauthenticated attacker...

8.7CVSS0.00215EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2025/08/27 5:32 a.m.3 views

CVE-2025-9513 editso fuso mod.rs PenetrateRsaAndAesHandshake inadequate encryption

A flaw has been found in editso fuso up to 1.0.4-beta.7. This affects the function PenetrateRsaAndAesHandshake of the file src/net/penetrate/handshake/mod.rs. This manipulation of the argument privkey causes inadequate encryption strength. Remote exploitation of the attack is possible. A high...

6.3CVSS4.2AI score0.00141EPSS
Exploits0References4
Snyk
Snyk
added 2025/07/31 8:42 p.m.6 views

Inadequate Encryption Strength

Overview Affected versions of this package are vulnerable to Inadequate Encryption Strength due to the HMAC and RSA key lengths used in the JSON Web Signature JWS implementation not meeting recommended security standards. Remediation Upgrade pyjwt to version 2.11.0 or higher. References - GitHub...

7CVSS5.8AI score0.0016EPSS
Exploits0References2
Snyk
Snyk
added 2025/07/31 8:42 p.m.2 views

Inadequate Encryption Strength

Overview Affected versions of this package are vulnerable to Inadequate Encryption Strength due to the HMAC and RSA key lengths used in the JSON Web Signature JWS implementation not meeting recommended security standards. Remediation Upgrade firebase/php-jwt to version 7.0.0 or higher. References...

6.5CVSS6.5AI score0.00137EPSS
Exploits0References2
OSV
OSV
added 2025/07/18 6:30 p.m.5 views

GHSA-565H-44M8-4C2V xxl-job has Inadequate Encryption Strength

A vulnerability was found in Xuxueli xxl-job up to 3.1.1 and classified as problematic. Affected by this issue is the function makeToken of the file src/main/java/com/xxl/job/admin/controller/IndexController.java of the component Token Generation. The manipulation leads to password hash with...

6.3CVSS4.2AI score0.0028EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2025/05/23 10:35 a.m.10 views

CVE-2024-40761

Inadequate Encryption Strength vulnerability in Apache Answer. This issue affects Apache Answer: through 1.3.5. Using the MD5 value of a user's email to access Gravatar is insecure and can lead to the leakage of user email. The official recommendation is to use SHA256 instead. Users are recommend...

5.3CVSS6.8AI score0.00749EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 6:41 a.m.9 views

CVE-2024-45719

Inadequate Encryption Strength vulnerability in Apache Answer. This issue affects Apache Answer: through 1.4.0. The ids generated using the UUID v1 version are to some extent not secure enough. It can cause the generated token to be predictable. Users are recommended to upgrade to version 1.4.1,...

2.6CVSS6.7AI score0.00229EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 2:25 a.m.9 views

CVE-2023-27389

Inadequate encryption strength vulnerability in CONPROSYS IoT Gateway products allows a remote authenticated attacker with an administrative privilege to apply a specially crafted Firmware update file, alter the information, cause a denial-of-service DoS condition, and/or execute arbitrary code...

7.2CVSS7.4AI score0.00523EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:57 p.m.8 views

CVE-2022-24116

Certain General Electric Renewable Energy products have inadequate encryption strength. This affects iNET and iNET II before 8.3.0...

9.8CVSS6.9AI score0.0029EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:39 p.m.4 views

CVE-2022-21139

Inadequate encryption strength for some IntelR PROSet/Wireless WiFi products may allow an unauthenticated user to potentially enable escalation of privilege via adjacent access...

8.8CVSS7.5AI score0.00152EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 10:30 p.m.23 views

CVE-2022-24318

A CWE-326: Inadequate Encryption Strength vulnerability exists that could cause non-encrypted communication with the server when outdated versions of the ViewX client are used. Affected Product: ClearSCADA All Versions, EcoStruxure Geo SCADA Expert 2019 All Versions, EcoStruxure Geo SCADA Expert...

7.5CVSS6.9AI score0.00391EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:19 p.m.6 views

CVE-2021-32496

SICK Visionary-S CX up version 5.21.2.29154R are vulnerable to an Inadequate Encryption Strength vulnerability concerning the internal SSH interface solely used by SICK for recovering returned devices. The use of weak ciphers make it easier for an attacker to break the security that protects...

5.3CVSS6.6AI score0.00264EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 8:53 p.m.4 views

CVE-2021-31796

An inadequate encryption vulnerability discovered in CyberArk Credential Provider before 12.1 may lead to Information Disclosure. An attacker may realistically have enough information that the number of possible keys for a credential file is only one, and the number is usually not higher than 2^3...

7.5CVSS7.1AI score0.01763EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 6:33 p.m.10 views

CVE-2021-32010

Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks. This issue affects: Secomea SiteManager All versions prior to 9.7. Secomea LinkManager versions prior to 9.7. Secomea GateManager versions prior to...

8.1CVSS6.8AI score0.00216EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:52 p.m.7 views

CVE-2020-8761

Inadequate encryption strength in subsystem for IntelR CSME versions before 13.0.40 and 13.30.10 may allow an unauthenticated user to potentially enable information disclosure via physical access...

4.6CVSS6.4AI score0.00153EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 3:54 p.m.5 views

CVE-2020-13785

D-Link DIR-865L Ax 1.20B01 Beta devices have Inadequate Encryption Strength...

7.5CVSS7AI score0.00587EPSS
Exploits1
Rows per page
Query Builder