Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

ATTACKERKB
ATTACKERKBadded yesterday1 views

CVE-2026-8881

Version 3.0.7 of the Securly Chrome Extension uses EVPBytesToKey key derivation with MD5 and a single iteration for AES encryption. MD5 has been broken since 2004 and a single iteration provides no key stretching...

5.7AI score
Exploits0References2
Cvelist
Cvelistadded yesterday1 views

CVE-2026-8881 CVE-2026-8881

Version 3.0.7 of the Securly Chrome Extension uses EVPBytesToKey key derivation with MD5 and a single iteration for AES encryption. MD5 has been broken since 2004 and a single iteration provides no key stretching...

Exploits0References1
CVE
CVEadded yesterday2 views

CVE-2026-8881

CVE-2026-8881 affects the Securly Chrome Extension (version 3.0.7). The crypto uses EVP_BytesToKey with MD5 and a single iteration for AES encryption, relying on an MD5 primitive that has been broken since 2004 and provides no key stretching. This weak derivation reduces the security of protected...

5.7AI score
Exploits0References1
Positive Technologies
Positive Technologiesadded yesterday3 views

PT-2026-46052

Version 3.0.7 of the Securly Chrome Extension uses EVP BytesToKey key derivation with MD5 and a single iteration for AES encryption. MD5 has been broken since 2004 and a single iteration provides no key stretching...

5.7AI score
Exploits0References2
SUSE CVE
SUSE CVEadded 2024/07/17 4:19 a.m.1 views

SUSE CVE-2022-48784

In the Linux kernel, the following vulnerability has been resolved: cfg80211: fix race in netlink owner interface destruction My previous fix here to fix the deadlock left a race where the exact same deadlock see the original commit referenced below can still happen if cfg80211destroyifaces alrea...

5.5CVSS6.5AI score0.00014EPSS
Exploits0References8
OSV
OSVadded 2023/10/25 9:15 p.m.44 views

GHSA-XWCQ-PM8M-C4VF crypto-js PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard

Impact Summary Crypto-js PBKDF2 is 1,000 times weaker than originally specified in 1993, and at least 1,300,000 times weaker than current industry standardOWASP PBKDF2 Cheatsheet. This is because it both 1 defaults to SHA1SHA1 wiki, a cryptographic hash algorithm considered insecure since at leas...

9.1CVSS9.2AI score0.01112EPSS
Exploits0References5
OSV
OSVadded 2023/10/25 9:14 p.m.27 views

GHSA-MPJ8-Q39X-WQ5H crypto-es PBKDF2 1,000 times weaker than specified in 1993 and 1.3M times weaker than current standard

Impact Summary Crypto-js PBKDF2 is 1,000 times weaker than originally specified in 1993, and at least 1,300,000 times weaker than current industry standardOWASP PBKDF2 Cheatsheet. This is because it both 1 defaults to SHA1SHA1 wiki, a cryptographic hash algorithm considered insecure since at leas...

9.1CVSS9.2AI score0.00182EPSS
Exploits1References4
NVD
NVDadded 2010/10/05 6:0 p.m.10 views

CVE-2010-3741

The offline backup mechanism in Research In Motion RIM BlackBerry Desktop Software uses single-iteration PBKDF2, which makes it easier for local users to decrypt a .ipd file via a brute-force attack...

4.7CVSS6.2AI score0.00071EPSS
Exploits0References5
Rows per page
Query Builder