CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

11 matches found

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2019-3516

Malware in sbrugna...

5.5CVSS4.9AI score0.00021EPSS

Exploits0References2

NVD•added 2021/06/25 7:15 p.m.•11 views

CVE-2021-33529

In Weidmueller Industrial WLAN devices in multiple versions the usage of hard-coded cryptographic keys within the service agent binary allows for the decryption of captured traffic across the network from or to the device...

7.5CVSS0.0028EPSS

Exploits0References1

CNNVD•added 2021/03/23 12:0 a.m.•2 views

Ovarro TWinSoft 安全漏洞

Ovarro Tbox is an application platform from Ovarro Germany. It offers new automation possibilities, simplifies system engineering and enables key industries worldwide to remotely control and monitor their applications. A security vulnerability exists in the Ovarro Tbox product, which can be...

9.8CVSS5.6AI score0.0024EPSS

Exploits0References4

OSV•added 2020/12/14 9:15 p.m.•2 views

CVE-2020-25230

A vulnerability has been identified in LOGO! 8 BM incl. SIPLUS variants All versions V8.3. Due to the usage of an outdated cipher mode on port 10005/tcp, an attacker could extract the encryption key from a captured communication with the device...

7.5CVSS7AI score0.001EPSS

Exploits0References1

Prion•added 2020/08/21 7:15 p.m.•10 views

Design/Logic Flaw

A nonce reuse vulnerability exists in the ACEView service of ALEOS before 4.13.0, 4.9.5, and 4.4.9 allowing message replay. Captured traffic to the ACEView service can be replayed to other gateways sharing the same credentials...

5.5CVSS4.4AI score0.00021EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/08/21 6:49 p.m.•9 views

CVE-2019-11856 ALEOS ACEView Message Replay

3.3CVSS4.3AI score0.00021EPSS

Exploits0References1

CVE•added 2020/08/21 6:49 p.m.•47 views

CVE-2019-11856

The CVE-2019-11856 entry covers a nonce-reuse vulnerability in the ACEView service of ALEOS prior to versions 4.13.0, 4.9.5, and 4.4.9. The issue allows replay of captured ACEView traffic to other gateways sharing the same credentials, enabling message replay. Affected component: ACEView service ...

5.5CVSS4AI score0.00021EPSS

Exploits0References1Affected Software1

OSV•added 2020/02/25 4:15 p.m.•1 views

CVE-2019-5137

The usage of hard-coded cryptographic keys within the ServiceAgent binary allows for the decryption of captured traffic across the network from or to the Moxa AWK-3131A firmware version 1.13...

7.5CVSS7.1AI score0.0048EPSS

Exploits1References1

Prion•added 2020/02/25 4:15 p.m.•15 views

Hardcoded credentials

The usage of hard-coded cryptographic keys within the ServiceAgent binary allows for the decryption of captured traffic across the network from or to the Moxa AWK-3131A firmware version 1.13...

5CVSS7.6AI score0.0048EPSS

Exploits1References1Affected Software1

CNVD•added 2020/02/25 12:0 a.m.•1 views

Moxa AWK-3131A ServiceAgent Trust Management Issue Vulnerability

Moxa AWK-3131A is a wireless access device from Moxa. A trust management issue vulnerability exists in the ServiceAgent binary in the Moxa AWK-3131A using firmware version 1.13. An attacker could exploit this vulnerability to decrypt captured traffic...

7.5CVSS6.8AI score0.0048EPSS

Exploits1References1

RedHat Linux•added 2015/08/12 5:4 a.m.•2 views

python-oauth2: Uses poor PRNG in nonce

It was found that python-oauth2 did not properly generate random values for use in nonces. An attacker able to capture network traffic of a website using OAuth2 authentication could use this flaw to conduct replay attacks against that website...

5.8CVSS5.7AI score0.00432EPSS

Exploits0References4

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by