Lucene search
K

48 matches found

Vulnrichment
Vulnrichment
added 2022/05/24 3:15 p.m.8 views

CVE-2022-29249 Reversible One-Way Hash and Use of a Broken or Risky Cryptographic Algorithm in io.github.javaezlib.JavaEZ

JavaEZ is a library that adds new functions to make Java easier. A weakness in JavaEZ 1.6 allows force decryption of locked text by unauthorized actors. The issue is NOT critical for non-secure applications, however may be critical in a situation where the highest levels of security are required...

7.5CVSS7.4AI score0.00682EPSS
Exploits0References2
OSV
OSV
added 2021/12/13 9:30 a.m.11 views

SUSE-SU-2021:4003-1 Security update for bcm43xx-firmware

This update for bcm43xx-firmware fixes the following issues: - CVE-2019-15126: Fixed a bug which could have allowed unauthorized decryption of some WPA2-encrypted traffic bsc1167162...

3.1CVSS5.6AI score0.07709EPSS
Exploits7References3
NVD
NVD
added 2020/04/14 11:15 p.m.23 views

CVE-2020-11005

The WindowsHello open source library NuGet HaemmerElectronics.SeppPenner.WindowsHello, before version 1.0.4, has a vulnerability where encrypted data could potentially be decrypted without needing authentication. If the library is used to encrypt text and write the output to a txt file, another...

5.5CVSS5.1AI score0.00234EPSS
Exploits0References2
Cvelist
Cvelist
added 2019/03/17 5:2 p.m.46 views

CVE-2019-6690

python-gnupg 0.4.3 allows context-dependent attackers to trick gnupg to decrypt other ciphertext than intended. To perform the attack, the passphrase to gnupg must be controlled by the adversary and the ciphertext should be trusted. Related to a "CWE-20: Improper Input Validation" issue affecting...

7.3AI score0.08548EPSS
Exploits2References13
Debian CVE
Debian CVE
added 2019/03/17 5:2 p.m.23 views

CVE-2019-6690

python-gnupg 0.4.3 allows context-dependent attackers to trick gnupg to decrypt other ciphertext than intended. To perform the attack, the passphrase to gnupg must be controlled by the adversary and the ciphertext should be trusted. Related to a "CWE-20: Improper Input Validation" issue affecting...

7.5CVSS7.5AI score0.08548EPSS
Exploits2
RedhatCVE
RedhatCVE
added 2019/01/29 12:19 p.m.31 views

CVE-2019-6690

python-gnupg 0.4.3 allows context-dependent attackers to trick gnupg to decrypt other ciphertext than intended. To perform the attack, the passphrase to gnupg must be controlled by the adversary and the ciphertext should be trusted. Related to a "CWE-20: Improper Input Validation" issue affecting...

7.5CVSS4.1AI score0.08548EPSS
Exploits2References3
NVD
NVD
added 2018/05/17 9:29 p.m.18 views

CVE-2018-1466

IBM SAN Volume Controller, IBM Storwize, IBM Spectrum Virtualize and IBM FlashSystem products 6.1, 6.2, 6.3, 6.4, 7.1, 7.2, 7.3, 7.4, 7.5, 7.6, 7.6.1, 7.7, 7.7.1, 7.8, 7.8.1, 8.1, and 8.1.1 use weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive...

5.3CVSS6.5AI score0.00842EPSS
Exploits2References5
Debian CVE
Debian CVE
added 2005/10/18 4:0 a.m.40 views

CVE-2005-3256

The key selection dialogue in Enigmail before 0.92.1 can incorrectly select a key with a user ID that does not have additional information, which allows parties with that key to decrypt the message...

5CVSS6.2AI score0.01782EPSS
Exploits0
Rows per page
Query Builder