Lucene search
K

27 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.2 views

EUVD-2017-5989

Malware in sbrugna...

7.5CVSS7.6AI score0.00837EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2006-2703

Malware in sbrugna...

5CVSS6.4AI score0.02119EPSS
Exploits0References9
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2022-5700

Malicious code in bioql PyPI...

5.9CVSS6.8AI score0.02002EPSS
Exploits2References15
RedhatCVE
RedhatCVE
added 2025/05/22 3:33 p.m.10 views

CVE-2020-12008

Baxter ExactaMix EM 2400 Versions 1.10, 1.11 and ExactaMix EM1200 Versions 1.1, 1.2 systems use cleartext messages to communicate order information with an order entry system. This could allow an attacker with network access to view sensitive data including PHI...

7.5CVSS6.5AI score0.00948EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/10 12:21 a.m.35 views

CVE-2025-47729

The TeleMessage archiving backend through 2025-05-05 holds cleartext copies of messages from TM SGNL aka Archive Signal app users, which is different functionality than described in the TeleMessage "End-to-End encryption from the mobile phone through to the corporate archive" documentation, as...

4.9CVSS6.9AI score0.00394EPSS
Exploits0References1
NVD
NVD
added 2025/05/08 2:15 p.m.56 views

CVE-2025-47729

The TeleMessage archiving backend through 2025-05-05 holds cleartext copies of messages from TM SGNL aka Archive Signal app users, which is different functionality than described in the TeleMessage "End-to-End encryption from the mobile phone through to the corporate archive" documentation, as...

4.9CVSS0.00394EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2025/05/08 12:0 a.m.10 views

CVE-2025-47729

The TeleMessage archiving backend through 2025-05-05 holds cleartext copies of messages from TM SGNL aka Archive Signal app users, which is different functionality than described in the TeleMessage “End-to-End encryption from the mobile phone through to the corporate archive” documentation, as...

4.9CVSS7.2AI score0.00394EPSS
In wildExploits0References4
Cvelist
Cvelist
added 2025/05/08 12:0 a.m.16 views

CVE-2025-47729

The TeleMessage archiving backend through 2025-05-05 holds cleartext copies of messages from TM SGNL aka Archive Signal app users, which is different functionality than described in the TeleMessage "End-to-End encryption from the mobile phone through to the corporate archive" documentation, as...

1.9CVSS0.00394EPSS
Exploits0References3
CVE
CVE
added 2025/05/08 12:0 a.m.240 views

CVE-2025-47729

CVE-2025-47729 relates to TeleMessage’s archiving backend (TM SGNL/Archive Signal). The public records state that the archiving backend stores cleartext copies of user messages, contrary to the stated end-to-end encryption claim, and this exposure has been exploited in the wild as of May 2025. Th...

4.9CVSS3.8AI score0.00394EPSS
In wildExploits0References4Affected Software1
VulnCheck KEV
VulnCheck KEV
added 2025/05/08 12:0 a.m.5 views

VulnCheck KEV: CVE-2025-47729

TeleMessage TM SGNL contains a hidden functionality vulnerability in which the archiving backend holds cleartext copies of messages from TM SGNL application users...

4.9CVSS5.8AI score0.00394EPSS
Exploits0References1
Prion
Prion
added 2023/08/29 5:15 p.m.29 views

Design/Logic Flaw

OpenPGP.js is a JavaScript implementation of the OpenPGP protocol. In affected versions OpenPGP Cleartext Signed Messages are cryptographically signed messages where the signed text is readable without special tools. These messages typically contain a "Hash: ..." header declaring the hash algorit...

4.3CVSS4.4AI score0.00309EPSS
Exploits1References2Affected Software1
SUSE CVE
SUSE CVE
added 2023/02/15 6:4 a.m.5 views

SUSE CVE-2009-1603

src/tools/pkcs11-tool.c in pkcs11-tool in OpenSC 0.11.7, when used with unspecified third-party PKCS11 modules, generates RSA keys with incorrect public exponents, which allows attackers to read the cleartext form of messages that were intended to be encrypted...

7.5CVSS6.8AI score0.01091EPSS
Exploits0References3
NVD
NVD
added 2021/08/10 3:15 p.m.18 views

CVE-2021-38373

In KDE KMail 19.12.3 aka 5.13.3, the SMTP STARTTLS option is not honored and cleartext messages are sent unless "Server requires authentication" is checked...

5.3CVSS0.00527EPSS
Exploits0References2
OSV
OSV
added 2021/08/10 3:15 p.m.3 views

DEBIAN-CVE-2021-38373

In KDE KMail 19.12.3 aka 5.13.3, the SMTP STARTTLS option is not honored and cleartext messages are sent unless "Server requires authentication" is checked...

5.3CVSS5.6AI score0.00527EPSS
Exploits0References1
Prion
Prion
added 2021/08/10 3:15 p.m.17 views

Authentication flaw

In KDE KMail 19.12.3 aka 5.13.3, the SMTP STARTTLS option is not honored and cleartext messages are sent unless "Server requires authentication" is checked...

3.5CVSS5.2AI score0.00527EPSS
Exploits0References2Affected Software1
UbuntuCve
UbuntuCve
added 2021/08/10 3:15 p.m.20 views

CVE-2021-38373

In KDE KMail 19.12.3 aka 5.13.3, the SMTP STARTTLS option is not honored and cleartext messages are sent unless "Server requires authentication" is checked...

5.3CVSS6.1AI score0.00527EPSS
Exploits0References4
OSV
OSV
added 2021/08/10 3:15 p.m.2 views

UBUNTU-CVE-2021-38373

In KDE KMail 19.12.3 aka 5.13.3, the SMTP STARTTLS option is not honored and cleartext messages are sent unless "Server requires authentication" is checked...

5.3CVSS5.8AI score0.00527EPSS
Exploits0References5
NVD
NVD
added 2021/06/02 4:15 p.m.18 views

CVE-2021-31855

KDE Messagelib through 5.17.0 reveals cleartext of encrypted messages in some situations. Deleting an attachment of a decrypted encrypted message stored on a remote server e.g., an IMAP server causes KMail to upload the decrypted content of the message to the remote server. With a crafted message...

6.5CVSS0.00604EPSS
Exploits0References2
NVD
NVD
added 2020/06/29 2:15 p.m.16 views

CVE-2020-12008

Baxter ExactaMix EM 2400 Versions 1.10, 1.11 and ExactaMix EM1200 Versions 1.1, 1.2 systems use cleartext messages to communicate order information with an order entry system. This could allow an attacker with network access to view sensitive data including PHI...

7.5CVSS0.00948EPSS
Exploits0References1
OSV
OSV
added 2019/05/22 5:29 p.m.3 views

DEBIAN-CVE-2019-11841

A message-forgery issue was discovered in crypto/openpgp/clearsign/clearsign.go in supplementary Go cryptography libraries 2019-03-25. According to the OpenPGP Message Format specification in RFC 4880 chapter 7, a cleartext signed message can contain one or more optional "Hash" Armor Headers. The...

5.9CVSS7.2AI score0.02002EPSS
Exploits2References1
Rows per page
Query Builder