CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

12 matches found

EUVD•added 2025/10/07 12:30 a.m.•3 views

EUVD-2015-6896

Malware in sbrugna...

5.3CVSS5.6AI score0.0009EPSS

Exploits1References2

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2024-3476

Malicious code in bioql PyPI...

9.1CVSS6.3AI score0.00088EPSS

Exploits0References6

RedhatCVE•added 2025/05/23 6:50 a.m.•2 views

CVE-2024-53441

An issue in the index.js decryptCookie function of cookie-encrypter v1.0.1 allows attackers to execute a bit flipping attack...

9.1CVSS7AI score0.00088EPSS

Exploits0References1

NVD•added 2024/12/09 8:15 p.m.•11 views

CVE-2024-53441

An issue in the index.js decryptCookie function of cookie-encrypter v1.0.1 allows attackers to execute a bit flipping attack...

9.1CVSS0.00088EPSS

Exploits0References2

CNNVD•added 2024/12/09 12:0 a.m.•1 views

cookie-encrypter 安全漏洞

cookie-encrypter is a cookie encryption and decryption library by the individual developer Emmanuel Bourmalo. A security vulnerability exists in cookie-encrypter version v1.0.1, which stems from an issue with the index.js decryptCookie function that allows an attacker to perform a bit flipping...

9.1CVSS6.5AI score0.00088EPSS

Exploits0References2

Vulnrichment•added 2024/12/09 12:0 a.m.•6 views

CVE-2024-53441

An issue in the index.js decryptCookie function of cookie-encrypter v1.0.1 allows attackers to execute a bit flipping attack...

7.1AI score0.00088EPSS

Exploits0References2

Cvelist•added 2024/12/09 12:0 a.m.•12 views

CVE-2024-53441

An issue in the index.js decryptCookie function of cookie-encrypter v1.0.1 allows attackers to execute a bit flipping attack...

0.00088EPSS

Exploits0References2

CVE•added 2024/12/09 12:0 a.m.•51 views

CVE-2024-53441

CVE-2024-53441 affects the cookie-encrypter library, specifically version 1.0.1, where a flaw in the index.js decryptCookie function enables a bit-flipping attack (AES-CBC) using the world-visible IV. This can allow an attacker to modify encrypted cookies without decrypting them, with a CVSSv3.1 ...

9.1CVSS6.8AI score0.00088EPSS

Exploits0References2

Prion•added 2023/09/25 5:15 a.m.•11 views

Authentication flaw

MultiBit HD before 0.1.2 allows attackers to conduct bit-flipping attacks that insert unspendable Bitcoin addresses into the list that MultiBit uses to send fees to the developers. Attackers cannot realistically steal these fees for themselves. This occurs because there is no message authenticati...

5CVSS7.4AI score0.0009EPSS

Exploits1References1Affected Software1

Vulnrichment•added 2023/09/25 12:0 a.m.•8 views

CVE-2015-6964

7.3AI score0.0009EPSS

Exploits1References1

Veracode•added 2020/01/24 5:37 a.m.•6 views

Bit Flipping Attack

parsel is vulnerable to bit flipping attack. The use of an insecure cryptographic algorithm aes-256-cbc without any integrity checks causes its ciphertext to be easily broken by bit-flipping attacks...

3.9AI score

Exploits0

Snyk•added 2020/01/22 8:44 a.m.•1 views

Bit-Flipping Attack

Amendment This was deemed not a vulnerability. Overview parsel is a gem to encrypt and decrypt data with a given key. Affected versions of this package are vulnerable to Bit-Flipping Attack via the ciphertext function. AES-256-CBC, the construct used in parsel.rb, has no integrity check i.e., the...

7.1CVSS6.8AI score

Exploits0References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by