CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

IBM Transformation Extender Advanced 10.0.1 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts...

7.5CVSS6.6AI score0.00031EPSS

Exploits0References1

OSV•added 2025/10/02 3:15 p.m.•1 views

CVE-2025-59745

Vulnerability in the cryptographic algorithm of AndSoft's e-TMS v25.03, which uses MD5 to encrypt passwords. MD5 is a cryptographically vulnerable hash algorithm and is no longer considered secure for storing or transmitting passwords. It is vulnerable to collision attacks and can be easily crack...

7.5CVSS5.8AI score0.00027EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 3:51 p.m.•6 views

CVE-2020-29575

The official elixir Docker images before 1.8.0-alpine Alpine specific contain a blank password for a root user. Systems using the elixir Linux Docker container deployed by affected versions of the Docker image may allow a remote attacker to achieve root access with a blank password...

10CVSS7.3AI score0.02074EPSS

Exploits0

Cvelist•added 2025/04/01 3:59 a.m.•14 views

CVE-2025-0418 Valmet DNA user passwords in plain text

Valmet DNA user passwords in plain text. This practice poses a security risk as attackers who gain access to local project data can read the passwords...

5.2CVSS0.00116EPSS

Exploits0References1

Vulnrichment•added 2025/03/01 2:22 p.m.•6 views

CVE-2024-41778 IBM Controller information disclosure

IBM Controller 11.0.0 through 11.0.1 and 11.1.0 does not require that users should have strong passwords by default, which makes it easier for attackers to compromise user accounts...

5.3CVSS5.2AI score0.00096EPSS

Exploits0References1

OSV•added 2024/12/17 9:15 p.m.•0 views

CVE-2024-55057

Phpgurukul Online Birth Certificate System 1.0 suffers from insufficient password requirements which can lead to unauthorized access to user accounts...

5.4CVSS5.8AI score0.00131EPSS

Exploits1References1

Vulnrichment•added 2024/01/11 12:0 a.m.•2 views

CVE-2023-50125

A default engineer password set on the Hozard alarm system Alarmsysteem v1.0 allows an attacker to bring the alarm system to a disarmed state...

5.7AI score0.00202EPSS

Exploits0References1

Cvelist•added 2002/03/09 5:0 a.m.•18 views

CVE-1999-1316

Passfilt.dll in Windows NT SP2 allows users to create a password that contains the user's name, which could make it easier for an attacker to guess...

6.6AI score0.06723EPSS

Exploits0References2