Lucene search
K

76 matches found

Cvelist
Cvelist
added 6 days ago35 views

CVE-2026-42505 Invoking Encrypted Client Hello privacy leak in crypto/tls

Handshakes which used Encrypted Client Hello could be de-anonymized by a passive network observer due to a disclosure of pre-shared key identities in the unencrypted client hello...

0.00419EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/07/07 12:0 a.m.8 views

PT-2026-56479

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Handshakes using Encrypted Client Hello ECH, a mechanism designed to encrypt the initial handshake of a TLS connection to protect client privacy, could be...

5.3CVSS6.1AI score0.00419EPSS
Exploits0References28
EUVD
EUVD
added 2026/07/02 4:6 p.m.7 views

EUVD-2026-41412

The Erlang/OTP ssl application does not validate that the PSK identity list and binder list carried in a TLS 1.3 ClientHello pre-shared key extension have equal length before passing them to the session ticket handler. In tlshandshake13:handlepresharedkey/3, an OfferedPreSharedKeys record with a...

8.2CVSS5.9AI score0.00487EPSS
Exploits0References7
OSV
OSV
added 2026/05/19 9:43 a.m.11 views

CLSA-2026-1779183792 gnutls: Fix of CVE-2026-42010

CVE-2026-42010: server-side RSA-PSK authentication bypass via NUL-byte truncation of binary PSK identities in gnutlsprocrsapskclientkx...

9.8CVSS5.8AI score0.0105EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/05/11 12:0 a.m.13 views

Meari IoT SDK 安全漏洞

Meari IoT SDK is a software development kit provided by Meari Corporation, aimed at intelligent device application development in the field of IoT communication and device management. The Meari IoT SDK contains security vulnerabilities, which stem from the hardcoding and sharing of multiple...

8.6CVSS5.8AI score0.00241EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.8 views

OpenFGA 安全漏洞

OpenFGA is an open-source authorization/licensing engine built for developers, inspired by Google Zanzibar. Versions of OpenFGA from 0.1.4 to 1.13.1 contain security vulnerabilities. These vulnerabilities stem from the fact that the playground endpoint responses include pre-shared API keys, which...

6.5CVSS5.8AI score0.00286EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/04/03 9:42 p.m.4 views

CVE-2015-10148

Hirschmann HiLCOS devices OpenBAT, WLC, BAT300, BAT54 prior to 8.80 and OpenBAT prior to 9.10 are shipped with identical default SSH and SSL keys that cannot be changed, allowing unauthenticated remote attackers to decrypt or intercept encrypted management communications. Attackers can perform...

8.8CVSS5.9AI score0.00291EPSS
Exploits0References3Affected Software1
CNNVD
CNNVD
added 2026/04/01 12:0 a.m.8 views

Mbed TLS 安全漏洞

Mbed TLS is an open-source, portable, easy-to-use, readable, and flexible SSL library developed by Mbed TLS. There are security vulnerabilities in Mbed TLS versions 3.5.x, 3.6.5, and earlier, as well as in TF-PSA-Crypto version 1.0. These vulnerabilities stem from improper input validation in...

9.1CVSS5.8AI score0.00204EPSS
Exploits0References2
Packet Storm
Packet Storm
added 2026/02/16 12:0 a.m.273 views

📄 FortiGate Advanced Symlink Bypass Exploit

This Python script is an advanced exploitation tool targeting vulnerable FortiGate devices manufactured by Fortinet. It attempts to exploit a symlink/path bypass vulnerability via the /lang//custom/ endpoint in order to access sensitive internal files that should not be publicly accessible...

5.9CVSS5.6AI score0.00477EPSS
Exploits1
OSV
OSV
added 2026/01/20 9:16 p.m.6 views

UBUNTU-CVE-2026-21637

A flaw in Node.js TLS error handling allows remote attackers to crash or exhaust resources of a TLS server when pskCallback or ALPNCallback are in use. Synchronous exceptions thrown during these callbacks bypass standard TLS error handling paths tlsClientError and error, causing either immediate...

7.5CVSS7.2AI score0.01056EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/21 10:4 p.m.13 views

CVE-2025-11935 Forward Secrecy Violation in WolfSSL TLS 1.3

With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing pskdheke without a keyshare...

6.3CVSS0.00204EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.3 views

wolfSSL 安全漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library for use by embedded systems developers from wolfSSL, Inc. in the United States. A security vulnerability exists in wolfSSL CyaSSL, which stems from the fact that TLS 1.3 pre-shared keys may ignore PFS requests, potentially...

7.5CVSS6.5AI score0.00204EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/10/09 12:0 a.m.7 views

PT-2025-41468

Name of the Vulnerable Software and Affected Versions Newforma Info Exchange NIX versions 2023.3 and 2024.1 Description Newforma Info Exchange NIX utilizes a hard-coded key for encrypting query parameters. Certain encrypted parameter values can define file paths for download, potentially...

6.3CVSS6.8AI score0.00347EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/07 12:30 a.m.3 views

EUVD-2015-4194

Malware in sbrugna...

2.6CVSS8.2AI score0.02028EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2001-0373

Malware in sbrugna...

7.5CVSS6.4AI score0.01351EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2016-8807

Malware in sbrugna...

4.7CVSS4.9AI score0.00297EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-0369

Malware in sbrugna...

4.6CVSS8.3AI score0.00785EPSS
Exploits2References26
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-22097

Malicious code in bioql PyPI...

7.3CVSS6.6AI score0.00288EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/09/21 7:24 p.m.14 views

CVE-2025-34198

Vasion Print formerly PrinterLogic Virtual Appliance Host versions prior to 22.0.951 and Application prior to 20.0.2368 VA and SaaS deployments contain shared, hardcoded SSH host private keys in the appliance image. The same private host keys RSA, ECDSA, and ED25519 are present across...

9.8CVSS6.7AI score0.00746EPSS
Exploits1References1
OSV
OSV
added 2025/07/21 4:15 p.m.2 views

CVE-2025-44647

In TRENDnet TEW-WLC100P 2.03b03, the idontcareaboutsecurityanduseaggressivemodepsk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK...

7.3CVSS5.8AI score0.00288EPSS
Exploits0References3
Rows per page
Query Builder