Lucene search
+L

189 matches found

CNNVD
CNNVD
added 2023/01/01 12:0 a.m.8 views

Primecoin 安全漏洞

Primecoin is an experimental cryptocurrency open-sourced by Ziftr. A security vulnerability exists in Primecoin version 0.8.4rc1 and earlier versions, which stems from the fact that incorrect manipulation of the parameter strUserPass/strRPCUserColonPass can lead to noticeable timing differences...

7.5CVSS5.4AI score0.00676EPSS
Exploits0References5
NVD
NVD
added 2022/07/11 8:15 p.m.24 views

CVE-2020-35168

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability...

9.8CVSS0.00483EPSS
Exploits0References2
NVD
NVD
added 2022/07/11 8:15 p.m.26 views

CVE-2020-35167

Dell BSAFE Crypto-C Micro Edition, versions before 4.1.5, and Dell BSAFE Micro Edition Suite, versions before 4.6, contain an Observable Timing Discrepancy Vulnerability...

9.8CVSS0.01045EPSS
Exploits0References2
CNNVD
CNNVD
added 2022/06/13 12:0 a.m.6 views

OTRS 安全漏洞

OTRS is an application from the German company OTRS. A service management software. A security vulnerability exists in OTRS versions 8.0.x through 8.0.23 and OTRS versions 7.0.x through 7.0.35, which stems from a difference in application response times. An attacker could exploit the vulnerabilit...

5.3CVSS5.8AI score0.00799EPSS
Exploits0References3
BDU FSTEC
BDU FSTEC
added 2022/04/14 12:0 a.m.6 views

The vulnerability of TLS and SSL Mbed TLS implementations lies in the exposure of information due to incompatibilities, allowing attackers to gain access to confidential data.

The vulnerability of TLS and SSL Mbed TLS implementations lies in the use of base64 decoding functions with non-persistent execution time. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...

6.8CVSS5.8AI score0.01358EPSS
Exploits0References9Affected Software5
OSV
OSV
added 2022/03/09 12:0 a.m.4 views

UBUNTU-CVE-2022-26387

When installing an add-on, Firefox verified the signature before prompting the user; but while the user was confirming the prompt, the underlying add-on file could have been modified and Firefox would not have noticed. This vulnerability affects Firefox 98, Firefox ESR 91.7, and Thunderbird 91.7...

7.5CVSS6.9AI score0.00657EPSS
Exploits1References7
NVD
NVD
added 2021/12/07 5:15 p.m.18 views

CVE-2021-37085

There is a Encoding timing vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to denial of service...

7.1CVSS0.00457EPSS
Exploits0References1
OSV
OSV
added 2021/12/07 5:15 p.m.3 views

CVE-2021-37085

There is a Encoding timing vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to denial of service...

5.9CVSS6.2AI score0.00457EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2021/12/07 5:15 p.m.3 views

CVE-2021-37085

There is a Encoding timing vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to denial of service...

7.1CVSS6.3AI score0.00457EPSS
Exploits0References2Affected Software1
Prion
Prion
added 2021/12/07 5:15 p.m.14 views

Spoofing

There is a Encoding timing vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to denial of service...

7.1CVSS5.6AI score0.00457EPSS
Exploits0References1Affected Software1
BDU FSTEC
BDU FSTEC
added 2021/12/07 12:0 a.m.6 views

The vulnerability of the SAE implementation of the wpa_supplicant function for wireless communication devices with WPA certification lies in the fact that it exposes information, allowing attackers to gain access to confidential data.

The vulnerability of the SAE implementation of the wpasupplicant function for wireless communication devices with WPA certification is related to errors in timing and access patterns to the cache. Exploiting this vulnerability allows a remote attacker to gain access to confidential data...

5.9CVSS6.9AI score0.03739EPSS
Exploits0References8Affected Software2
OSV
OSV
added 2021/08/25 9:1 p.m.45 views

GHSA-7CQG-8449-RMFV Observable Discrepancy in libsecp256k1-rs

A timing vulnerability in the Scalar::checkoverflow function in Parity libsecp256k1-rs before 0.3.1 potentially allows an attacker to leak information via a side-channel attack...

5.9CVSS5.3AI score0.00881EPSS
Exploits0References3
OSV
OSV
added 2021/08/11 10:15 p.m.4 views

CVE-2021-1109

NVIDIA camera firmware contains a multistep, timing-related vulnerability where an unauthorized modification by camera resources may result in loss of data integrity or denial of service across several streams...

6.3CVSS6.6AI score0.00194EPSS
Exploits0References1
Prion
Prion
added 2021/08/11 10:15 p.m.22 views

Design/Logic Flaw

NVIDIA camera firmware contains a multistep, timing-related vulnerability where an unauthorized modification by camera resources may result in loss of data integrity or denial of service across several streams...

3.3CVSS6.3AI score0.00194EPSS
Exploits0References1Affected Software1
OSV
OSV
added 2021/08/06 11:3 a.m.5 views

OESA-2021-1301 bouncycastle security update

The package is organised so that it contains a light-weight API suitable for use in any environment including the newly released J2ME with the additional infrastructure to conform the algorithms to the JCE framework. Security Fixes: Bouncy Castle BC Java before 1.66, BC C .NET before 1.8.7, BC-FJ...

5.9CVSS6.7AI score0.01522EPSS
Exploits0References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2019:0395-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS6.6AI score0.41288EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2018:4068-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.6AI score0.39657EPSS
Exploits5References7
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2018:4001-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.2AI score0.12154EPSS
Exploits4References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2018:3863-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.5AI score0.12154EPSS
Exploits0References2
UbuntuCve
UbuntuCve
added 2021/06/08 12:0 a.m.27 views

CVE-2020-24512

Observable timing discrepancy in some IntelR Processors may allow an authenticated user to potentially enable information disclosure via local access...

3.3CVSS6.4AI score0.00383EPSS
Exploits0References3
Rows per page
Query Builder