Lucene search
K

2261 matches found

OSV
OSV
added 2020/02/04 5:15 p.m.2 views

CVE-2019-4540

IBM Security Directory Server 6.4.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 165813...

7.5CVSS5.8AI score0.00792EPSS
Exploits0References2
Prion
Prion
added 2020/02/04 5:15 p.m.14 views

Code injection

IBM Security Directory Server 6.4.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 165813...

5CVSS7.1AI score0.00792EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2020/02/04 4:45 p.m.23 views

CVE-2019-4540

IBM Security Directory Server 6.4.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 165813...

5.9CVSS7.2AI score0.00792EPSS
Exploits0References2
Kitploit
Kitploit
added 2020/02/02 8:30 p.m.122 views

PCFG Cracker - Probabilistic Context Free Grammar (PCFG) Password Guess Generator

PCFG = Probabilistic Context Free Grammar PCFG = Pretty Cool Fuzzy Guesser In short: A collection of tools to perform research into how humans generate passwords. These can be used to crack password hashes, but also create synthetic passwords honeywords, or help develop better password strength...

6.8AI score
Exploits0References2
ThreatPost
ThreatPost
added 2020/01/28 8:51 p.m.69 views

Trolls-For-Hire Pave Way For Sophisticated Social Media Hacks

NEW ORLEANS – Researchers have observed the blossoming of a new type of social media nuisance they are calling Trolling-as-a-Service. They say these rabble-rousing efforts have emerged as a clever new way for hackers to launch coordinated and dangerous attacks via Facebook and Twitter. Speaking a...

0.4AI score
Exploits0References6
Prion
Prion
added 2020/01/28 7:15 p.m.14 views

Code injection

IBM Security Secret Server 10.7 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 170045...

5CVSS7.6AI score0.00792EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2020/01/28 6:30 p.m.40 views

CVE-2019-4639

CVE-2019-4639 affects IBM Security Secret Server. Multiple sources confirm that 10.7 uses weaker-than-expected cryptographic algorithms, potentially allowing an attacker to decrypt highly sensitive information. IBM’s security bulletin states the issue has been addressed in release 10.7.000059, wi...

7.5CVSS7.3AI score0.00792EPSS
Exploits0References2Affected Software1
OSV
OSV
added 2020/01/27 4:15 p.m.2 views

DEBIAN-CVE-2015-0294

GnuTLS before 3.3.13 does not validate that the signature algorithms match when importing a certificate...

7.5CVSS7.2AI score0.01586EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2020/01/24 5:47 a.m.14 views

Security Bulletin: A Security Vulnerability Has Been Identified In IBM Security Secret Server (CVE-2019-4639)

Summary A security vulnerability identified on IBM Security Secret Server has been addressed in the release 10.7.000059. Vulnerability Details CVEID: CVE-2019-4639 DESCRIPTION: IBM Security Secret Server uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt...

7.5CVSS1AI score0.00792EPSS
Exploits0Affected Software1
OpenVAS
OpenVAS
added 2020/01/23 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2020-1021)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.3CVSS6.3AI score0.14298EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/01/09 12:0 a.m.250 views

OpenSSL 1.0.2 < 1.0.2u Vulnerability

The version of OpenSSL installed on the remote host is prior to 1.0.2u. It is, therefore, affected by a vulnerability as referenced in the 1.0.2u advisory. - There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are...

5.3CVSS6.9AI score0.14298EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2020/01/08 12:0 a.m.5 views

The vulnerability of the FortiSIEM security management system, related to the use of cryptographic algorithms containing defects, allows attackers to gain unauthorized access to protected information.

The vulnerability of the FortiSIEM security management system is related to the use of cryptographic algorithms that contain vulnerabilities. Exploiting this vulnerability can allow a malicious actor, operating remotely, to gain unauthorized access to protected information...

3.7CVSS6.5AI score0.00894EPSS
Exploits0References3Affected Software1
Mageia
Mageia
added 2020/01/05 3:37 p.m.33 views

Updated openssl packages fix security vulnerability

Updated compat-openssl10 and openssl packages fix security vulnerability: There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and...

5.3CVSS2.2AI score0.14298EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2020/01/02 12:0 a.m.35 views

EulerOS 2.0 SP8 : openssl (EulerOS-SA-2020-1021)

According to the version of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - An integer overflow was found in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. As per upstream: No EC...

5.3CVSS6.9AI score0.14298EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2019/12/17 3:48 p.m.24 views

Security Bulletin: IBM API Connect is potentially impacted by weak cryptographic algorithms(CVE-2019-4609)

Summary IBM API Connect has addressed the following vulnerability. Vulnerability Details CVEID: CVE-2019-4609 DESCRIPTION: IBM API Connect uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. CVSS Base score: 5.9 CVSS Temporal...

7.5CVSS1.8AI score0.00792EPSS
Exploits0Affected Software1
OSV
OSV
added 2019/12/13 3:15 p.m.5 views

CVE-2019-19397

There is a weak algorithm vulnerability in some Huawei products. The affected products use weak algorithms by default. Attackers may exploit the vulnerability to cause information leaks...

7.5CVSS7.1AI score0.00764EPSS
Exploits0References1
Prion
Prion
added 2019/12/13 3:15 p.m.22 views

Design/Logic Flaw

There is a weak algorithm vulnerability in some Huawei products. The affected products use weak algorithms by default. Attackers may exploit the vulnerability to cause information leaks...

5CVSS7.3AI score0.00764EPSS
Exploits0References1Affected Software7
OSV
OSV
added 2019/12/06 6:15 p.m.38 views

CVE-2019-1551

There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5.3CVSS5.4AI score
Exploits0References24
Prion
Prion
added 2019/12/06 6:15 p.m.51 views

Buffer overflow

There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5CVSS5.5AI score0.14298EPSS
Exploits0References24Affected Software9
Debian CVE
Debian CVE
added 2019/12/06 5:20 p.m.53 views

CVE-2019-1551

There is an overflow bug in the x6464 Montgomery squaring procedure used in exponentiation with 512-bit moduli. No EC algorithms are affected. Analysis suggests that attacks against 2-prime RSA1024, 3-prime RSA1536, and DSA1024 as a result of this defect would be very difficult to perform and are...

5.3CVSS6.5AI score0.14298EPSS
Exploits0
Rows per page
Query Builder