Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8659 matches found

Hacker One
Hacker Oneadded 2019/03/07 9:21 a.m.54 views

Internet Bug Bounty: ChaCha20-Poly1305 with long nonces

This report relates to CVE-2019-1543, https://www.openssl.org/news/secadv/20190306.txt, which I reported to the OpenSSL maintainers a few days ago. OpenSSL accepts nonces for the AEAD cipher ChaCha20-Poly1305 of up to 16-bytes. This support is advertised in the OpenSSL documentation and via the...

5.8CVSS7.4AI score0.03184EPSS
Exploits0
UbuntuCve
UbuntuCveadded 2019/03/06 9:29 p.m.32 views

CVE-2019-1543

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also...

7.4CVSS6.5AI score0.03184EPSS
Exploits0References2
NVD
NVDadded 2019/03/06 9:29 p.m.16 views

CVE-2019-1543

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also...

7.4CVSS6.3AI score0.03184EPSS
Exploits0References13
Prion
Prionadded 2019/03/06 9:29 p.m.28 views

Design/Logic Flaw

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also...

5.8CVSS7.1AI score0.03184EPSS
Exploits0References13Affected Software1
OSV
OSVadded 2019/03/06 9:29 p.m.1 views

ALPINE-CVE-2019-1543

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also...

7.4CVSS6.6AI score0.03184EPSS
Exploits0References1
OSV
OSVadded 2019/03/06 9:29 p.m.21 views

CVE-2019-1543

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also...

7.4CVSS6.3AI score
Exploits0References13
OSV
OSVadded 2019/03/06 9:29 p.m.1 views

DEBIAN-CVE-2019-1543

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also...

7.4CVSS6.1AI score0.03184EPSS
Exploits0References1
OSV
OSVadded 2019/03/06 9:29 p.m.0 views

UBUNTU-CVE-2019-1543

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also...

7.4CVSS6.5AI score0.03184EPSS
Exploits0References3
Cvelist
Cvelistadded 2019/03/06 9:0 p.m.16 views

CVE-2019-1543 ChaCha20-Poly1305 with long nonces

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also...

5.8AI score0.03184EPSS
Exploits0References13
AlpineLinux
AlpineLinuxadded 2019/03/06 9:0 p.m.29 views

CVE-2019-1543

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also...

7.4CVSS6.3AI score0.03184EPSS
Exploits0
Debian CVE
Debian CVEadded 2019/03/06 9:0 p.m.38 views

CVE-2019-1543

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also...

7.4CVSS6.3AI score0.03184EPSS
Exploits0
CVE
CVEadded 2019/03/06 9:0 p.m.471 views

CVE-2019-1543

CVE-2019-1543 describes a nonce handling flaw in ChaCha20-Poly1305 within OpenSSL: accepting non-default nonce lengths up to 16 bytes with only the last 12 bytes considered, risking nonce reuse if an application sets a longer nonce and changes leading bytes. OpenSSL 1.1.1 and 1.1.0 are affected. ...

7.4CVSS6.1AI score0.03184EPSS
Exploits0References13Affected Software1
OpenSSL
OpenSSLadded 2019/03/06 12:0 a.m.69 views

Vulnerability in OpenSSL - ChaCha20-Poly1305 with long nonces

ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length and front pads the nonce with 0 bytes if it is less than 12 bytes. However it also...

5.8AI score0.03184EPSS
Exploits0Affected Software1
FreeBSD
FreeBSDadded 2019/03/06 12:0 a.m.103 views

OpenSSL -- ChaCha20-Poly1305 nonce vulnerability

The OpenSSL project reports: Low: ChaCha20-Poly1305 with long nonces CVE-2019-1543 ChaCha20-Poly1305 is an AEAD cipher, and requires a unique nonce input for every encryption operation. RFC 7539 specifies that the nonce value IV should be 96 bits 12 bytes. OpenSSL allows a variable nonce length a...

7.4CVSS1.2AI score0.03184EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2019/03/06 12:0 a.m.1 views

PT-2019-1694

Name of the Vulnerable Software and Affected Versions OpenSSL versions 1.1.1 through 1.1.1b OpenSSL versions 1.1.0 through 1.1.0j Description The issue is related to the ChaCha20-Poly1305 cipher in OpenSSL, which requires a unique nonce input for every encryption operation. According to RFC 7539,...

10CVSS8.6AI score0.94464EPSS
Exploits188References261
OSV
OSVadded 2019/03/05 11:29 p.m.0 views

CVE-2019-9555

Sagemcom F@st 5260 routers using firmware version 0.4.39, in WPA mode, default to using a PSK that is generated from a 2-part wordlist of known values and a nonce with insufficient entropy. The number of possible PSKs is about 1.78 billion, which is too small...

5.3CVSS5.8AI score
Exploits0References1
Prion
Prionadded 2019/03/05 11:29 p.m.16 views

Design/Logic Flaw

Sagemcom F@st 5260 routers using firmware version 0.4.39, in WPA mode, default to using a PSK that is generated from a 2-part wordlist of known values and a nonce with insufficient entropy. The number of possible PSKs is about 1.78 billion, which is too small...

5CVSS5.2AI score0.00245EPSS
Exploits2References1Affected Software1
Hacker One
Hacker Oneadded 2019/03/03 3:0 a.m.36 views

Semmle: the login blocking mechanism does not work correctly

Summary: The login block mechanism does not work correctly because it blocks the login for 1 minute and allows you to sign in again many times with specific pattern by allowing login 2 or 3 times after 1 minute Exploitation 1. open https://lgtm-com.pentesting.semmle.net/ 2. try to login with vali...

0.1AI score
Exploits0
RedHat Linux
RedHat Linuxadded 2019/02/18 4:58 p.m.5 views

httpd: Weak Digest auth nonce generation in mod_auth_digest

In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. In a cluster of servers using a common Digest authentication configuration, HTTP requests could be replayed...

9.8CVSS7.3AI score0.0728EPSS
Exploits0References5
RedHat Linux
RedHat Linuxadded 2019/02/18 4:55 p.m.5 views

httpd: Weak Digest auth nonce generation in mod_auth_digest

In Apache httpd 2.2.0 to 2.4.29, when generating an HTTP Digest authentication challenge, the nonce sent to prevent reply attacks was not correctly generated using a pseudo-random seed. In a cluster of servers using a common Digest authentication configuration, HTTP requests could be replayed...

9.8CVSS7.3AI score0.0728EPSS
Exploits0References5
Rows per page
Query Builder