Lucene search
K

2878 matches found

CNNVD
CNNVD
added 2023/01/16 12:0 a.m.11 views

etcd 加密问题漏洞

etcd is a key-value storage system for distributed systems written in the Go language. A cryptographic issue vulnerability exists in etcd grpc-proxy, which stems from the presence of a 64-bit block cipher attack...

5.3CVSS6.8AI score0.00321EPSS
Exploits0References10
Kitploit
Kitploit
added 2023/01/13 11:30 a.m.288 views

Bkcrack - Crack Legacy Zip Encryption With Biham And Kocher's Known Plaintext Attack

Crack legacy zip encryption with Biham and Kocher's known plaintext attack. Overview A ZIP archive may contain many entries whose content can be compressed and/or encrypted. In particular, entries can be encrypted with a password-based Encryption Algorithm symmetric encryption algorithm referred ...

6.9AI score
Exploits0References2
NVD
NVD
added 2023/01/05 10:15 p.m.23 views

CVE-2021-40341

DES cipher, which has inadequate encryption strength, is used Hitachi Energy FOXMAN-UN to encrypt user credentials used to access the Network Elements. Successful exploitation allows sensitive information to be decrypted easily. This issue affects FOXMAN-UN product: FOXMAN-UN R16A, FOXMAN-UN R15B...

7.1CVSS7.4AI score0.00084EPSS
Exploits0References2
Prion
Prion
added 2023/01/05 10:15 p.m.18 views

Code injection

DES cipher, which has inadequate encryption strength, is used Hitachi Energy FOXMAN-UN to encrypt user credentials used to access the Network Elements. Successful exploitation allows sensitive information to be decrypted easily. This issue affects FOXMAN-UN product: FOXMAN-UN R16A, FOXMAN-UN R15B...

1.7CVSS7.2AI score0.00084EPSS
Exploits0References2Affected Software2
CVE
CVE
added 2023/01/05 9:26 p.m.69 views

CVE-2021-40341

CVE-2021-40341 involves the use of DES to encrypt user credentials in Hitachi Energy FOXMAN-UN and UNEM network-management products. The affected families span FOXMAN-UN R9C–R16A and UNEM R9C–R16A. The root cause is the inadequate encryption strength of DES (56-bit key), which enables decryption ...

7.1CVSS6.1AI score0.00084EPSS
Exploits0References2Affected Software2
Positive Technologies
Positive Technologies
added 2023/01/05 12:0 a.m.4 views

PT-2023-12361 · Hitachi Energy · Hitachi Energy Foxman-Un +1

Name of the Vulnerable Software and Affected Versions: Hitachi Energy FOXMAN-UN versions R9C through R16A Hitachi Energy UNEM versions R9C through R16A Description: The DES cipher, which has inadequate encryption strength, is used in Hitachi Energy FOXMAN-UN to encrypt user credentials used to...

7.1CVSS5.3AI score0.00084EPSS
Exploits0References5
0day.today
0day.today
added 2022/12/24 12:0 a.m.328 views

macOS/x64 Execve Caesar Cipher String Null-Free Shellcode (286 bytes)

Shellcode Title: macOS/x64 - Execve Caesar Cipher String Null-Free Shellcode 286 Bytes Shellcode Author: Bobby Cooke boku @0xBoku github.com/boku7 Tested on: macOS Monterey; 21.6.0 Darwin Kernel Version; x8664 Shellcode Description: macOS 64 bit shellcode. Uses execve syscall to spawn bash. The...

0.2AI score
Exploits0
F5 Networks
F5 Networks
added 2022/12/22 10:11 p.m.5 views

K15395: OpenSSL vulnerability CVE-2012-0027

Security Advisory Description The GOST ENGINE in OpenSSL before 1.0.0f does not properly handle invalid parameters for the GOST block cipher, which allows remote attackers to cause a denial of service daemon crash via crafted data from a TLS client. CVE-2012-0027 Impact This vulnerability could...

5CVSS6.8AI score0.04992EPSS
Exploits0
The Hacker News
The Hacker News
added 2022/12/21 9:16 a.m.33 views

GodFather Android Banking Trojan Targeting Users of Over 400 Banking and Crypto Apps

An Android banking trojan known as GodFather is being used to target users of more than 400 banking and cryptocurrency apps spanning across 16 countries. This includes 215 banks, 94 crypto wallet providers, and 110 crypto exchange platforms serving users in the U.S., Turkey, Spain, Italy, Canada,...

0.3AI score
Exploits0
OSV
OSV
added 2022/12/16 10:15 p.m.21 views

CVE-2021-38241

Deserialization issue discovered in Ruoyi before 4.6.1 allows remote attackers to run arbitrary code via weak cipher in Shiro framework...

9.8CVSS7.5AI score0.01029EPSS
Exploits0References1
Prion
Prion
added 2022/12/16 10:15 p.m.15 views

Deserialization of untrusted data

Deserialization issue discovered in Ruoyi before 4.6.1 allows remote attackers to run arbitrary code via weak cipher in Shiro framework...

7.5CVSS9.5AI score0.01029EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/12/16 12:0 a.m.4 views

CVE-2021-38241

Deserialization issue discovered in Ruoyi before 4.6.1 allows remote attackers to run arbitrary code via weak cipher in Shiro framework...

9.6AI score0.01029EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/12/16 12:0 a.m.21 views

CVE-2021-38241

Deserialization issue discovered in Ruoyi before 4.6.1 allows remote attackers to run arbitrary code via weak cipher in Shiro framework...

9.8AI score0.01029EPSS
Exploits0References1
OSV
OSV
added 2022/12/13 4:15 p.m.3 views

CVE-2022-46832

Use of a Broken or Risky Cryptographic Algorithm in SICK RFU62x firmware version 2.21 allows a low-privileged remote attacker to decrypt the encrypted data if the user requested weak cipher suites to be used for encryption via the SSH interface. The patch and installation procedure for the firmwa...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References1
NVD
NVD
added 2022/12/13 4:15 p.m.15 views

CVE-2022-27581

Use of a Broken or Risky Cryptographic Algorithm in SICK RFU61x firmware version v2.25 allows a low-privileged remote attacker to decrypt the encrypted data if the user requested weak cipher suites to be used for encryption via the SSH interface. The patch and installation procedure for the...

6.5CVSS0.00312EPSS
Exploits0References1
OSV
OSV
added 2022/12/13 4:15 p.m.3 views

CVE-2022-27581

Use of a Broken or Risky Cryptographic Algorithm in SICK RFU61x firmware version v2.25 allows a low-privileged remote attacker to decrypt the encrypted data if the user requested weak cipher suites to be used for encryption via the SSH interface. The patch and installation procedure for the...

6.5CVSS5.8AI score0.00312EPSS
Exploits0References1
Prion
Prion
added 2022/12/13 4:15 p.m.21 views

Design/Logic Flaw

Use of a Broken or Risky Cryptographic Algorithm in SICK RFU61x firmware version v2.25 allows a low-privileged remote attacker to decrypt the encrypted data if the user requested weak cipher suites to be used for encryption via the SSH interface. The patch and installation procedure for the...

4CVSS6.5AI score0.00312EPSS
Exploits0References1Affected Software12
Prion
Prion
added 2022/12/13 4:15 p.m.15 views

Design/Logic Flaw

Use of a Broken or Risky Cryptographic Algorithm in SICK RFU62x firmware version 2.21 allows a low-privileged remote attacker to decrypt the encrypted data if the user requested weak cipher suites to be used for encryption via the SSH interface. The patch and installation procedure for the firmwa...

4CVSS6.5AI score0.00312EPSS
Exploits0References1Affected Software21
CNNVD
CNNVD
added 2022/12/13 12:0 a.m.8 views

SICK RFU61x 加密问题漏洞

The SICK RFU61x is the smallest read/write device in the SICK UHF portfolio from SICK. It is ideally suited for IoT applications directly on workpieces or components. A security vulnerability exists in the SICK RFU61x firmware version prior to v2.25, which stems from the fact that the use of a...

6.5CVSS6.6AI score0.00312EPSS
Exploits0References2
Vulnrichment
Vulnrichment
added 2022/12/13 12:0 a.m.3 views

CVE-2022-46832

Use of a Broken or Risky Cryptographic Algorithm in SICK RFU62x firmware version 2.21 allows a low-privileged remote attacker to decrypt the encrypted data if the user requested weak cipher suites to be used for encryption via the SSH interface. The patch and installation procedure for the firmwa...

6.5AI score0.00312EPSS
Exploits0References1
Rows per page
Query Builder