CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Positive Technologies•added 2025/05/09 12:0 a.m.•5 views

PT-2025-20584 · Ibm · Ibm App Connect Enterprise Certified Container

Name of the Vulnerable Software and Affected Versions: IBM App Connect Enterprise Certified Container versions 8.1 through 12.10 Description: The issue concerns the use of weaker than expected cryptographic algorithms to protect the database storing flows in DesignerAuthoring instances. This coul...

5.5CVSS5.9AI score0.00112EPSS

Exploits0References6

Packet Storm News•added 2025/05/09 12:0 a.m.•1 views

On the Price of Differential Privacy for Spectral Clustering over Stochastic Block Models

We investigate privacy-preserving spectral clustering for community detection within stochastic block models SBMs. Specifically, we focus on edge differential privacy DP and propose private algorithms for community recovery. Our work explores the fundamental trade-offs between the privacy budget...

7AI score

Packet Storm News•added 2025/05/08 12:0 a.m.•2 views

Optimal Regret of Bernoulli Bandits under Global Differential Privacy

As sequential learning algorithms are increasingly applied to real life, ensuring data privacy while maintaining their utilities emerges as a timely question. In this context, regret minimisation in stochastic bandits under $ε$-global Differential Privacy DP has been widely studied. Unlike bandit...

Packet Storm News•added 2025/05/08 12:0 a.m.•2 views

Botan C++ Crypto Algorithms Library 3.8.1

Botan is a C++ library of cryptographic algorithms, including AES, DES, SHA-1, RSA, DSA, Diffie-Hellman, and many others. It also supports X.509 certificates and CRLs, and PKCS 10 certificate requests, and has a high level filter/pipe message processing system. The library is easily portable to...

Packet Storm News•added 2025/05/07 12:0 a.m.•6 views

Federated Learning for Cyber Physical Systems: a Comprehensive Survey

The integration of machine learning ML in cyber physical systems CPS is a complex task due to the challenges that arise in terms of real-time decision making, safety, reliability, device heterogeneity, and data privacy. There are also open research questions that must be addressed in order to ful...

6.7AI score

Packet Storm News•added 2025/05/07 12:0 a.m.•5 views

Botan C++ Crypto Algorithms Library 3.8.0

OpenVAS•added 2025/05/07 12:0 a.m.•3 views

Configure Proper MACs Algorithms for the SSH Service

In cryptography, a message authentication code MAC is an authentication mechanism used by communication entities to check message integrity. If the configured algorithms are insecure, security risks increase because weak algorithms have been or are about to be cracked in the industry. The...

7.4AI score

Exploits0References4

OpenVAS•added 2025/05/07 12:0 a.m.•3 views

Configure Proper SSH Key Exchange Algorithms

Key exchange is a process in which two parties exchange keys to allow the use of an encryption algorithm. A secure key exchange algorithm enables them to securely exchange keys, thereby using encryption algorithms to encrypt messages to be sent and decrypt received messages. Set the SSH key...

OpenVAS•added 2025/05/07 12:0 a.m.•3 views

Exploits0References4

Configure Proper Key Algorithms for User Authentication

If the public and private key authentication mode is used, the public and private key algorithms on the client must be restricted to avoid using insecure algorithms that have been phased out in the industry. The recommended security algorithms are sorted by priority as follows. The algorithms hav...

7.2AI score

Exploits0References3

OpenVAS•added 2025/05/07 12:0 a.m.•4 views

Configure Proper Cryptographic Algorithms for the SSH Service

As cryptographic technologies develop and computing capabilities improve, some cryptographic algorithms are no longer suitable for today SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

7AI score

Exploits0References4

OpenVAS•added 2025/05/07 12:0 a.m.•1 views

Do Not Configure the Encryption Algorithm Overwriting Policy for the SSH Service

The configuration files of the SSH encryption algorithms are /etc/ssh/sshdconfig and /etc/sysconfig/sshd. When the SSH service is running, you can edit the /etc/sysconfig/sshd file to overwrite the encryption algorithm policy. If the encryption algorithm overwriting policy is configured, users ar...

7.1AI score

Exploits0References3

RedhatCVE•added 2025/05/04 1:9 a.m.•20 views

CVE-2024-55912

IBM Concert Software 1.0.0 through 1.0.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.9CVSS6.5AI score0.00173EPSS

NVD•added 2025/05/02 1:15 a.m.•15 views

CVE-2024-55912

IBM Concert Software 1.0.0 through 1.0.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.9CVSS0.00173EPSS

Vulnrichment•added 2025/05/02 12:36 a.m.•10 views

CVE-2024-55912 IBM Concert Software information disclosure

IBM Concert Software 1.0.0 through 1.0.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.9CVSS5.6AI score0.00173EPSS

CVE•added 2025/05/02 12:36 a.m.•56 views

CVE-2024-55912

CVE-2024-55912 affects IBM Concert Software 1.0.0–1.0.5, where the use of weaker-than-expected cryptographic algorithms could permit an attacker to decrypt highly sensitive information. The related sources in connected documents confirm affected versions and a remediation: upgrade to IBM Concert ...

5.9CVSS5.6AI score0.00173EPSS

Exploits0References1Affected Software1

Cvelist•added 2025/05/02 12:36 a.m.•23 views

CVE-2024-55912 IBM Concert Software information disclosure

IBM Concert Software 1.0.0 through 1.0.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.9CVSS0.00173EPSS