Lucene search
+L

95 matches found

Kitploit
Kitploit
added 2022/11/11 11:30 a.m.37 views

TeamFiltration - Cross-Platform Framework For Enumerating, Spraying, Exfiltrating, And Backdooring O365 AAD Accounts

TeamFiltration is a cross-platform framework for enumerating, spraying, exfiltrating, and backdooring O365 AAD accounts. See the TeamFiltration wiki page for an introduction into how TeamFiltration works and the Quick Start Guide for how to get up and running! This tool has been used internally...

7.4AI score
Exploits0References7
BDU FSTEC
BDU FSTEC
added 2022/08/02 12:0 a.m.8 views

The vulnerability of the AAD Handler component in the Nimbus JOSE + JWT Java library, due to insufficient data authentication checks, allows attackers to compromise the confidentiality, integrity, and accessibility of the protected information.

The vulnerability of the AAD Handler component in the Nimbus JOSE + JWT Java library is related to insufficient verification of data authenticity. Exploiting this vulnerability allows an attacker to compromise the confidentiality, integrity, and accessibility of protected information by uploading...

7.8CVSS7.2AI score0.00888EPSS
Exploits0References7Affected Software1
Redos
Redos
added 2022/05/24 12:0 a.m.68 views

ROS-20220524-01

OpenSSL cryptographic library vulnerability is related to incorrect input validation in the script crehash. Exploitation of the vulnerability could allow an attacker acting remotely to execute arbitrary OS commands with script privileges A vulnerability in the OpenSSL cryptographic library is...

10CVSS7.9AI score0.83223EPSS
Exploits5
RedhatCVE
RedhatCVE
added 2022/05/18 10:42 p.m.49 views

CVE-2022-1434

The OpenSSL 3.0 implementation of the RC4-MD5 ciphersuite incorrectly uses the AAD data as the MAC key. This makes the MAC key trivially predictable. An attacker could exploit this issue by performing a man-in-the-middle attack to modify data being sent from one endpoint to an OpenSSL 3.0 recipie...

5.9CVSS3.6AI score0.01026EPSS
Exploits0References3
OSV
OSV
added 2022/05/13 1:30 a.m.19 views

GHSA-2QP9-WG27-9PCV Nimbus JOSE+JWT missing overflow check

In Nimbus JOSE+JWT before 4.39, there is no integer-overflow check when converting length values from bytes to bits, which allows attackers to conduct HMAC bypass attacks by shifting Additional Authenticated Data AAD and ciphertext so that different plaintext is obtained for the same HMAC...

7.5CVSS7.5AI score0.00888EPSS
Exploits0References5
CNVD
CNVD
added 2022/05/08 12:0 a.m.16 views

OpenSSL Encryption Problem Vulnerability (CNVD-2022-37790)

OpenSSL is an open source general-purpose cryptographic library from the Openssl team capable of implementing the Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols. The product supports multiple encryption algorithms, including symmetric ciphers, hashing algorithms, secure...

5.9CVSS0.9AI score0.01026EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2022/05/04 12:0 a.m.58 views

FreeBSD : OpenSSL -- Multiple vulnerabilities (fceb2b08-cb76-11ec-a06f-d4c9ef517024)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the fceb2b08-cb76-11ec-a06f-d4c9ef517024 advisory. - The crehash script does not properly sanitise shell metacharacters to prevent command...

10CVSS7.4AI score0.83223EPSS
Exploits5References6
CVE
CVE
added 2022/05/03 3:15 p.m.205 views

CVE-2022-1434

The CVE-2022-1434 issue affects the RC4-MD5 ciphersuite in OpenSSL 3.0, where the AAD data is incorrectly used as the MAC key, allowing an attacker to modify data in transit without decrypting it. The vulnerability requires both endpoints to negotiate RC4-MD5, and it is not exploitable when TLSv1...

5.9CVSS7.3AI score0.01026EPSS
Exploits0References4Affected Software1
OSV
OSV
added 2022/05/03 3:15 p.m.42 views

CVE-2022-1434 Incorrect MAC key used in the RC4-MD5 ciphersuite

The OpenSSL 3.0 implementation of the RC4-MD5 ciphersuite incorrectly uses the AAD data as the MAC key. This makes the MAC key trivially predictable. An attacker could exploit this issue by performing a man-in-the-middle attack to modify data being sent from one endpoint to an OpenSSL 3.0 recipie...

5.9CVSS6.7AI score0.01026EPSS
Exploits0References6
ATTACKERKB
ATTACKERKB
added 2022/05/03 12:0 a.m.6 views

CVE-2022-1434

The OpenSSL 3.0 implementation of the RC4-MD5 ciphersuite incorrectly uses the AAD data as the MAC key. This makes the MAC key trivially predictable. An attacker could exploit this issue by performing a man-in-the-middle attack to modify data being sent from one endpoint to an OpenSSL 3.0 recipie...

5.9CVSS6.6AI score0.01026EPSS
Exploits0References6
CNNVD
CNNVD
added 2022/05/03 12:0 a.m.3 views

OpenSSL 加密问题漏洞

OpenSSL is an open source general-purpose cryptographic library from the Openssl team capable of implementing the Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols. The product supports multiple encryption algorithms, including symmetric ciphers, hashing algorithms, secure...

5.9CVSS6.8AI score0.01026EPSS
Exploits0References15
vulnersOsv
vulnersOsv
added 2021/09/20 5:15 p.m.8 views

citrinedjangomodule (=1.0.0), cligo (>=1.0.0 <=1.2.1) +24 more potentially affected by CVE-2021-32839 via sqlparse (>=0.4.0 <=0.4.1)

sqlparse PYPI version =0.4.0, =1.0.0, =4.15.0, =1.0.9, =0.0.1, =0.2.0, =0.0.1, =0.14.2, =0.0.6, =0.0.10, =0.0.204 and more Source cves: CVE-2021-32839 Source advisory: OSV:PYSEC-2021-333...

7.5CVSS7AI score0.02295EPSS
Exploits0
Kitploit
Kitploit
added 2021/07/27 9:30 p.m.88 views

TokenTactics - Azure JWT Token Manipulation Toolset

Azure JSON Web Token "JWT" Manipulation Toolset Azure access tokens allow you to authenticate to certain endpoints as a user who signs in with a device code. Even if they used multi-factor authentication. Once you have a user's access token, it may be possible to access certain apps such as...

7.2AI score
Exploits0References3
RedhatCVE
RedhatCVE
added 2021/07/27 1:20 p.m.31 views

CVE-2021-32791

A flaw was found in modauthopenidc. The AES GCM encryption uses a static IV and AAD which could lead to other cryptographic attacks. The highest threat from this liability is to data confidentiality...

5.9CVSS2.1AI score0.01503EPSS
Exploits0References4
NVD
NVD
added 2021/07/26 5:15 p.m.23 views

CVE-2021-32791

modauthopenidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In modauthopenidc before version 2.4.9, the AES GCM encryption in modauthopenidc uses a static IV and...

5.9CVSS0.01503EPSS
Exploits0References7
OSV
OSV
added 2021/07/26 5:15 p.m.8 views

AZL-6481 CVE-2021-32791 affecting package httpd for versions less than 2.4.52-1

modauthopenidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In modauthopenidc before version 2.4.9, the AES GCM encryption in modauthopenidc uses a static IV and...

5.9CVSS6.5AI score0.01503EPSS
Exploits0References1
OSV
OSV
added 2021/07/26 5:15 p.m.2 views

DEBIAN-CVE-2021-32791

modauthopenidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In modauthopenidc before version 2.4.9, the AES GCM encryption in modauthopenidc uses a static IV and...

5.9CVSS6.4AI score0.01503EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2021/07/26 12:0 a.m.58 views

CVE-2021-32791

modauthopenidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In modauthopenidc before version 2.4.9, the AES GCM encryption in modauthopenidc uses a static IV and...

5.9CVSS6.1AI score0.01503EPSS
Exploits0
Cvelist
Cvelist
added 2021/07/26 12:0 a.m.49 views

CVE-2021-32791 Hardcoded static IV and AAD with a reused key in AES GCM encryption in mod_auth_openidc

modauthopenidc is an authentication/authorization module for the Apache 2.x HTTP server that functions as an OpenID Connect Relying Party, authenticating users against an OpenID Connect Provider. In modauthopenidc before version 2.4.9, the AES GCM encryption in modauthopenidc uses a static IV and...

5.9CVSS6.4AI score0.01503EPSS
Exploits0References7
CVE
CVE
added 2019/08/14 8:55 p.m.110 views

CVE-2019-1172

Technical details about CVE-2019-1172 are not publicly provided in the supplied documents; no concrete affected products, root cause, or remediation are listed beyond a generic description. Monitor for updates.

4.3CVSS6.7AI score0.03989EPSS
Exploits0References1Affected Software6
Rows per page
Query Builder