60 matches found
CVE-2025-11934
Improper input validation in the TLS 1.3 CertificateVerify signature algorithm negotiation in wolfSSL 5.8.2 and earlier on multiple platforms allows for downgrading the signature algorithm used. For example when a client sends ECDSA P521 as the supported signature algorithm the server previously...
CVE-2025-11934
CVE-2025-11934 concerns wolfSSL’s TLS 1.3 CertificateVerify signature algorithm negotiation. The vulnerability stems from improper input validation that can downgrade the negotiated signature algorithm (e.g., client supports ECDSA P521 but server accepts and uses ECDSA P256), potentially weakenin...
CVE-2025-11934
Improper input validation in the TLS 1.3 CertificateVerify signature algorithm negotiation in wolfSSL 5.8.2 and earlier on multiple platforms allows for downgrading the signature algorithm used. For example when a client sends ECDSA P521 as the supported signature algorithm the server previously...
EUVD-2020-20159
Malware in sbrugna...
EUVD-2020-20160
Malware in sbrugna...
EUVD-2025-19626
Malicious code in bioql PyPI...
EUVD-2024-0450
Malicious code in bioql PyPI...
EUVD-2022-36217
Malicious code in bioql PyPI...
CVE-2025-36582
Dell NetWorker, versions 19.12.0.1 and prior, contains a Selection of Less-Secure Algorithm During Negotiation 'Algorithm Downgrade' vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure...
Dell NetWorker Algorithm Downgrade (DSA-2025-268)
The version of Dell EMC NetWorker installed on the remote Windows host is affected by a vulnerability. Dell NetWorker, versions prior to 19.11.0.5 or 19.12.x through 19.12.0.1, contains a Selection of Less-Secure Algorithm During Negotiation 'Algorithm Downgrade' vulnerability. An unauthenticated...
CVE-2025-36582
Dell NetWorker, versions 19.12.0.1 and prior, contains a Selection of Less-Secure Algorithm During Negotiation 'Algorithm Downgrade' vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2025-36582
Dell NetWorker, versions 19.12.0.1 and prior, contains a Selection of Less-Secure Algorithm During Negotiation 'Algorithm Downgrade' vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2025-36582
CVE-2025-36582 concerns Dell NetWorker, versions 19.12.0.1 and earlier, with a vulnerability titled “Selection of Less-Secure Algorithm During Negotiation (Algorithm Downgrade).” An unauthenticated attacker with remote access could potentially disclose information due to selecting a weaker algori...
CVE-2025-36582
Dell NetWorker, versions 19.12.0.1 and prior, contains a Selection of Less-Secure Algorithm During Negotiation 'Algorithm Downgrade' vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure...
CVE-2025-36582
Dell NetWorker, versions 19.12.0.1 and prior, contains a Selection of Less-Secure Algorithm During Negotiation 'Algorithm Downgrade' vulnerability. An unauthenticated attacker with remote access could potentially exploit this vulnerability, leading to Information disclosure...
PT-2025-27526 · Dell · Dell Networker
Name of the Vulnerable Software and Affected Versions: Dell NetWorker versions 19.12.0.1 and prior Description: The issue is related to a Selection of Less-Secure Algorithm During Negotiation, also known as an 'Algorithm Downgrade'. This could allow an unauthenticated attacker with remote access ...
CVE-2023-51842
An algorithm-downgrade issue was discovered in Ylianst MeshCentral 1.1.16...
CVE-2022-33173
An algorithm-downgrade issue was discovered in Couchbase Server before 7.0.4. Analytics Remote Links may temporarily downgrade to non-TLS connection to determine the TLS port number, using SCRAM-SHA instead...
Synology DiskStation Manager Use of a Broken or Risky Cryptographic Algorithm (CVE-2020-27652)
Algorithm downgrade vulnerability in QuickConnect in Synology DiskStation Manager DSM before 6.2.3-25426-2 allows man-in-the- middle attackers to spoof servers and obtain sensitive information via unspecified vectors. This plugin only works with Tenable.ot. Please visit...
GHSA-WPXW-5XFM-X22V MeshCentral algorithm-downgrade issue
An algorithm-downgrade issue was discovered in Ylianst MeshCentral 1.1.16...