Lucene search
K

66 matches found

Packet Storm News
Packet Storm News
added 2025/10/21 12:0 a.m.5 views

Evaluating Large Language Models in Detecting Secrets in Android Apps

Mobile apps often embed authentication secrets, such as API keys, tokens, and client IDs, to integrate with cloud services. However, developers often hardcode these credentials into Android apps, exposing them to extraction through reverse engineering. Once compromised, adversaries can exploit...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2015-3991

Malware in sbrugna...

4.3CVSS6.4AI score0.00883EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2016-8948

Malware in sbrugna...

5.5CVSS5.6AI score0.00307EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2013-6105

Malware in sbrugna...

7.5CVSS7.5AI score0.01562EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2013-5749

Malware in sbrugna...

4.3CVSS6AI score0.02143EPSS
Exploits0References11
RedhatCVE
RedhatCVE
added 2025/05/22 5:6 p.m.9 views

CVE-2020-11723

Cellebrite UFED 5.0 through 7.29 uses four hardcoded RSA private keys to authenticate to the ADB daemon on target devices. Extracted keys can be used to place evidence onto target devices when performing a forensic extraction...

5.5CVSS6.9AI score0.00447EPSS
Exploits3References1
F5 Networks
F5 Networks
added 2023/02/21 7:51 p.m.41 views

K2355: Timing attacks on RSA private keys - CAN-2003-0147

Security Advisory Description Note : Versions that are not listed in this article have not been evaluated for vulnerability to this security advisory. For information about the F5 security policy regarding evaluating older and unsupported versions of F5 products, refer to K4602: Overview of the F...

5CVSS9.1AI score0.06393EPSS
Exploits0
OSV
OSV
added 2023/01/17 9:15 p.m.6 views

AZL-47713 CVE-2021-36647 affecting package hvloader for versions less than 1.0.1-6

Use of a Broken or Risky Cryptographic Algorithm in the function mbedtlsmpiexpmod in lignum.c in Mbed TLS Mbed TLS all versions before 3.0.0, 2.27.0 or 2.16.11 allows attackers with access to precise enough timing and memory access information typically an untrusted operating system attacking a...

4.7CVSS5.7AI score0.00163EPSS
Exploits0References1
OSV
OSV
added 2023/01/17 9:15 p.m.3 views

DEBIAN-CVE-2021-36647

Use of a Broken or Risky Cryptographic Algorithm in the function mbedtlsmpiexpmod in lignum.c in Mbed TLS Mbed TLS all versions before 3.0.0, 2.27.0 or 2.16.11 allows attackers with access to precise enough timing and memory access information typically an untrusted operating system attacking a...

4.7CVSS4.8AI score0.00163EPSS
Exploits0References1
Snyk
Snyk
added 2022/01/05 3:31 p.m.4 views

Information Exposure

Overview std/math/big is a Go standard library package std/math/big Affected versions of this package are vulnerable to Information Exposure. Go Vulnerability Report: Int.Exp Montgomery mishandled carry propagation and produced an incorrect output, which makes it easier for attackers to obtain...

8.7CVSS6.4AI score0.02627EPSS
Exploits0References3
0day.today
0day.today
added 2020/04/15 12:0 a.m.83 views

Cellebrite UFED 7.29 Hardcoded ADB Authentication Keys Vulnerability

Cellebrite UFED versions 5.0 through 7.29 use four hardcoded RSA private keys to authenticate to the ADB daemon on target devices. Extracted keys can be used to place evidence onto target devices when performing a forensic extraction. Title: Cellebrite Hardcoded ADB Authentication Keys Publicatio...

5.5CVSS0.5AI score0.00447EPSS
Exploits3
NVD
NVD
added 2020/04/14 8:15 p.m.17 views

CVE-2020-11723

Cellebrite UFED 5.0 through 7.29 uses four hardcoded RSA private keys to authenticate to the ADB daemon on target devices. Extracted keys can be used to place evidence onto target devices when performing a forensic extraction...

5.5CVSS5.5AI score0.00447EPSS
Exploits3References2
Prion
Prion
added 2020/04/14 8:15 p.m.17 views

Hardcoded credentials

Cellebrite UFED 5.0 through 7.29 uses four hardcoded RSA private keys to authenticate to the ADB daemon on target devices. Extracted keys can be used to place evidence onto target devices when performing a forensic extraction...

2.1CVSS5.5AI score0.00447EPSS
Exploits3References2Affected Software1
CNVD
CNVD
added 2020/04/14 12:0 a.m.4 views

Cellebrite UFED Trust Management Issue Vulnerability

Cellebrite UFED is a universal forensic product from Cellebrite Israel. The product is mainly used for data extraction, transmission and analysis of devices. A trust management issue vulnerability exists in Cellebrite UFED versions 5.0 through 7.29, which arises from authentication of the ADB...

5.5CVSS7.1AI score0.00447EPSS
Exploits3References1
KoreLogic Security
KoreLogic Security
added 2020/04/13 12:0 a.m.71 views

Cellebrite Hardcoded ADB Authentication Keys

Vulnerability Details Affected Vendor: Cellebrite Affected Product: UFED Affected Version: 5.0 - 7.29 Platform: Embedded Windows CWE Classification: CWE-321: Use of hardcoded cryptographic keys CVE ID: CVE-2020-11723 2. Vulnerability Description Cellebrite UFED uses four hardcoded RSA private...

5.5CVSS5.5AI score0.00447EPSS
Exploits3Affected Software1
NVD
NVD
added 2020/02/13 11:15 p.m.20 views

CVE-2013-6277

QNAP VioCard 300 has hardcoded RSA private keys...

7.5CVSS7.6AI score0.01562EPSS
Exploits1References2
Prion
Prion
added 2020/02/13 11:15 p.m.21 views

Hardcoded credentials

QNAP VioCard 300 has hardcoded RSA private keys...

5CVSS7.1AI score0.01562EPSS
Exploits1References2Affected Software1
CNVD
CNVD
added 2019/08/02 12:0 a.m.4 views

D-Link 6600-AP, DWL-3600AP and DWL-8610AP Information Disclosure Vulnerability

The D-Link 6600-AP, among others, is a wireless access point device from AUO D-Link of Taiwan, China. A security vulnerability exists in the D-Link 6600-AP, DWL-3600AP, and DWL-8610AP. An attacker could exploit the vulnerability to extract certificates and RSA private keys...

5.5CVSS6.8AI score0.0043EPSS
Exploits3References1
Cloud Foundry
Cloud Foundry
added 2018/09/11 12:0 a.m.500 views

USN-3733-1: GnuPG vulnerability | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 Canonical Ubuntu 16.04 Description Daniel J. Bernstein, Joachim Breitner, Daniel Genkin, Leon Groot Bruinderink, Nadia Heninger, Tanja Lange, Christine van Vredendaal, and Yuval Yarom discovered that GnuPG is...

6.8CVSS6.4AI score0.03885EPSS
Exploits0
Ubuntu
Ubuntu
added 2018/08/15 4:42 p.m.54 views

USN-3733-2: GnuPG vulnerability

USN-3733-1 fixed a vulnerability in GnuPG. This update provides the corresponding update for Ubuntu 12.04 ESM. Original advisory details: Daniel J. Bernstein, Joachim Breitner, Daniel Genkin, Leon Groot Bruinderink, Nadia Heninger, Tanja Lange, Christine van Vredendaal, and Yuval Yarom discovered...

6.8CVSS6.7AI score0.03885EPSS
Exploits0
Rows per page
Query Builder