CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

EUVD•added 2025/10/07 12:30 a.m.•2 views

EUVD-2017-18206

Malware in sbrugna...

9.1CVSS9.2AI score0.00495EPSS

Exploits0References5

OSV•added 2024/06/15 12:0 a.m.•9 views

OPENSUSE-SU-2024:12078-1 cryptctl-2.4-1.1 on GA media

These are all security issues fixed in the cryptctl-2.4-1.1 package on the GA media of openSUSE Tumbleweed...

9.8CVSS9.5AI score0.00328EPSS

SUSE CVE•added 2023/02/15 4:44 a.m.•2 views

SUSE CVE-2017-9270

In cryptctl before version 2.0 a malicious server could send RPC requests that could overwrite files outside of the cryptctl key database...

8.7CVSS6.9AI score0.00495EPSS

SUSE CVE•added 2023/02/15 4:6 a.m.•2 views

SUSE CVE-2019-18906

A Improper Authentication vulnerability in cryptctl of SUSE Linux Enterprise Server for SAP 12-SP5, SUSE Manager Server 4.0 allows attackers with access to the hashed password to use it without having to crack it. This issue affects: SUSE Linux Enterprise Server for SAP 12-SP5 cryptctl versions...

9.8CVSS6.8AI score0.00328EPSS

Exploits0References7

Tenable Nessus•added 2021/07/16 12:0 a.m.•23 views

openSUSE 15 Security Update : cryptctl (openSUSE-SU-2021:2136-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2021:2136-1 advisory. - A Use of Password Hash Instead of Password for Authentication vulnerability in cryptctl of SUSE Linux Enterprise Server for SAP 12-SP5, SUSE Manag...

OSV•added 2021/07/10 4:46 p.m.•2 views

OPENSUSE-SU-2021:2136-1 Security update for cryptctl

This update for cryptctl fixes the following issues: Update to version 2.4: - CVE-2019-18906: Client side password hashing was equivalent to clear text password storage bsc1186226 - First step to use plain text password instead of hashed password. - Move repository into the SUSE github organizati...

9.8CVSS9.8AI score0.00328EPSS

OPENSUSE Linux•added 2021/07/10 12:0 a.m.•20 views

Security update for cryptctl (important)

openSUSE Security Update: Security update for cryptctl Announcement ID: openSUSE-SU-2021:2136-1 Rating: important References: 1186226 Cross-References: CVE-2019-18906 Affected Products: openSUSE Leap 15.3 An update that fixes one vulnerability is now available. Description: This update for cryptc...

9.8CVSS9.6AI score0.00328EPSS

OSV•added 2021/06/30 9:15 a.m.•0 views

CVE-2019-18906

9.8CVSS7.3AI score0.00328EPSS

Prion•added 2021/06/30 9:15 a.m.•12 views

Authentication flaw

7.5CVSS9.3AI score0.00328EPSS

Exploits0References1Affected Software1

Cvelist•added 2021/06/30 8:35 a.m.•15 views

CVE-2019-18906 cryptctl: client side password hashing is equivalent to clear text password storage

9.8CVSS9.4AI score0.00328EPSS

CVE•added 2021/06/30 8:35 a.m.•153 views

CVE-2019-18906

CVE-2019-18906 – cryptctl password hashing issue Affected products: SUSE Linux Enterprise Server for SAP 12-SP5 and SUSE Manager Server 4.0. Affected component: cryptctl. Root cause: client-side password hashing was equivalent to storing cleartext password, enabling use of the hashed password wit...

9.8CVSS9.4AI score0.00328EPSS

Exploits0References1Affected Software1

Tenable Nessus•added 2021/06/28 12:0 a.m.•19 views

openSUSE 15 Security Update : cryptctl (openSUSE-SU-2021:0907-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2021:0907-1 advisory. Note that Nessus has not tested for this issue but has instead relied only on the application's self-reported version number. %NASLMINLEVEL 70300 C...

Tenable Nessus•added 2021/06/28 12:0 a.m.•20 views

SUSE SLED15 / SLES15 Security Update : cryptctl (SUSE-SU-2021:2136-1)

The remote SUSE Linux SLED15 / SLES15 / SLESSAP15 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2021:2136-1 advisory. - A Improper Authentication vulnerability in cryptctl of SUSE Linux Enterprise Server for SAP 12-SP5, SUSE Manager Server 4.0 allow...

Tenable Nessus•added 2021/06/28 12:0 a.m.•19 views

SUSE SLES12 Security Update : cryptctl (SUSE-SU-2021:2137-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has a package installed that is affected by a vulnerability as referenced in the SUSE-SU-2021:2137-1 advisory. - A Improper Authentication vulnerability in cryptctl of SUSE Linux Enterprise Server for SAP 12-SP5, SUSE Manager Server 4.0 allows attacke...

OSV•added 2021/06/24 9:52 a.m.•2 views

OPENSUSE-SU-2021:0907-1 Security update for cryptctl

9.8CVSS9.8AI score0.00328EPSS

OpenVAS•added 2021/06/24 12:0 a.m.•11 views

SUSE: Security Advisory (SUSE-SU-2021:2136-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.8CVSS9.5AI score0.00328EPSS

OPENSUSE Linux•added 2021/06/24 12:0 a.m.•22 views

Security update for cryptctl (important)

openSUSE Security Update: Security update for cryptctl Announcement ID: openSUSE-SU-2021:0907-1 Rating: important References: 1186226 Cross-References: CVE-2019-18906 Affected Products: openSUSE Leap 15.2 An update that fixes one vulnerability is now available. Description: This update for cryptc...

9.8CVSS9.6AI score0.00328EPSS

OpenVAS•added 2021/06/24 12:0 a.m.•15 views

SUSE: Security Advisory (SUSE-SU-2021:2137-1)

9.8CVSS9.5AI score0.00328EPSS

OSV•added 2021/06/23 11:40 a.m.•2 views

SUSE-SU-2021:2137-1 Security update for cryptctl

9.8CVSS9.8AI score0.00328EPSS