Lucene search
K

13 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 10:18 a.m.7 views

CVE-2019-18629

Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200 allow an attacker to execute an unwanted binary during a exploited clone install. This requires creating a clone file and signing that file with a...

8.1CVSS7.2AI score0.01017EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2019-8352

Malware in sbrugna...

8.1CVSS8.4AI score0.01017EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/02/05 5:34 a.m.6 views

CVE-2024-1631

Impact: The library offers a function to generate an ed25519 key pair via Ed25519KeyIdentity.generate with an optional param to provide a 32 byte seed value, which will then be used as the secret key. When no seed value is provided, it is expected that the library generates the secret key using...

9.1CVSS6.8AI score0.00882EPSS
Exploits1References1
CNNVD
CNNVD
added 2024/08/26 12:0 a.m.3 views

SuperMicro BIOS 安全漏洞

SuperMicro BIOS is a software from SuperMicro, Inc. that is stored on a small memory chip on the motherboard. A security vulnerability exists in SuperMicro BIOS that stems from the use of an insecure platform key PK, where an attacker utilizing a compromised PK private key can create malicious UE...

6.4CVSS7AI score0.0024EPSS
Exploits0References10
Positive Technologies
Positive Technologies
added 2024/08/26 12:0 a.m.4 views

PT-2024-5891 · Unknown · Uefi Firmware

Name of the Vulnerable Software and Affected Versions: UEFI firmware affected versions not specified Description: A vulnerability related to the use of an insecure Platform Key PK has been discovered. An attacker with the compromised PK private key can create malicious UEFI software that is signe...

6.8CVSS7.3AI score0.0024EPSS
Exploits0References35
Github Security Blog
Github Security Blog
added 2024/02/26 8:10 p.m.23 views

@nfid/embed has compromised private key due to @dfinity/auth-client producing insecure session keys

Problem User sessions in the @nfid/embed SDK with Ed25519 keys are vulnerable due to a compromised private key 535yc-uxytb-gfk7h-tny7p-vjkoe-i4krp-3qmcl-uqfgr-cpgej-yqtjq-rqe. This exposes users to potential loss of funds on ledgers and unauthorized access to canisters they control. Solution Usin...

7AI score
Exploits0References3Affected Software1
OSV
OSV
added 2024/02/26 8:10 p.m.16 views

GHSA-84C3-J8R2-MCM8 @nfid/embed has compromised private key due to @dfinity/auth-client producing insecure session keys

Problem User sessions in the @nfid/embed SDK with Ed25519 keys are vulnerable due to a compromised private key 535yc-uxytb-gfk7h-tny7p-vjkoe-i4krp-3qmcl-uqfgr-cpgej-yqtjq-rqe. This exposes users to potential loss of funds on ledgers and unauthorized access to canisters they control. Solution Usin...

9.1CVSS7AI score
Exploits0References3
Vulnrichment
Vulnrichment
added 2024/02/21 2:12 a.m.17 views

CVE-2024-1631 agent-js: Insecure Key Generation in `Ed25519KeyIdentity.generate`

Impact: The library offers a function to generate an ed25519 key pair via Ed25519KeyIdentity.generate with an optional param to provide a 32 byte seed value, which will then be used as the secret key. When no seed value is provided, it is expected that the library generates the secret key using...

9.1CVSS6.8AI score0.00882EPSS
Exploits1References5
OSV
OSV
added 2021/03/04 7:15 a.m.3 views

CVE-2019-18629

Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200 allow an attacker to execute an unwanted binary during a exploited clone install. This requires creating a clone file and signing that file with a...

8.1CVSS5.8AI score0.01017EPSS
Exploits0References2
NVD
NVD
added 2021/03/04 7:15 a.m.22 views

CVE-2019-18629

Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200 allow an attacker to execute an unwanted binary during a exploited clone install. This requires creating a clone file and signing that file with a...

8.1CVSS0.01017EPSS
Exploits0References2
Prion
Prion
added 2021/03/04 7:15 a.m.19 views

Design/Logic Flaw

Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200 allow an attacker to execute an unwanted binary during a exploited clone install. This requires creating a clone file and signing that file with a...

6.8CVSS8.1AI score0.01017EPSS
Exploits0References2Affected Software10
Cvelist
Cvelist
added 2021/03/04 6:12 a.m.20 views

CVE-2019-18629

Xerox AltaLink B8045/B8055/B8065/B8075/B8090 and C8030/C8035/C8045/C8055/C8070 multifunction printers with software releases before 101.00x.099.28200 allow an attacker to execute an unwanted binary during a exploited clone install. This requires creating a clone file and signing that file with a...

8.2AI score0.01017EPSS
Exploits0References2
CERT
CERT
added 2012/11/02 12:0 a.m.47 views

Fortigate UTM appliances share the same default CA certificate

Overview Fortigate UTM appliances that support SSL/TLS deep packet inspection share the same self-signed Fortigate CA certificate and associated private key across all devices. The private key, which has been compromised, allows attackers to create and sign fake certificates. Description Fortigat...

5.6AI score
Exploits0References5
Rows per page
Query Builder