701 matches found
CVE-2023-46894
An issue discovered in esptool 4.6.2 allows attackers to view sensitive information via weak cryptographic algorithm...
PT-2023-30256 · Esptool · Esptool
Name of the Vulnerable Software and Affected Versions: esptool version 4.6.2 Description: An issue in esptool allows attackers to view sensitive information due to the use of a weak cryptographic algorithm. Recommendations: For esptool version 4.6.2, at the moment, there is no information about a...
CVE-2023-46894
Removed by vendor...
RHEL 9 : edk2 (RHSA-2023:6330)
The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2023:6330 advisory. EDK Embedded Development Kit is a project to enable UEFI support for Virtual Machines. This package contains a sample 64-bit UEFI firmware f...
CVE-2023-39252
Dell SCG Policy Manager 5.16.00.14 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information...
CVE-2023-39252
Dell SCG Policy Manager 5.16.00.14 contains a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by performing MitM attacks and let attackers obtain sensitive information...
CVE-2023-39252
Dell EMC SCG Policy Manager 5.16.00.14 is affected by a broken cryptographic algorithm vulnerability that enables remote unauthenticated MitM attacks to obtain sensitive information. Root cause: cryptographic algorithm flaw in the policy manager; CVSS metrics indicate high confidentiality impact ...
Siemens LOGO! 8 BM Use of a Broken or Risky Cryptographic Algorithm (CVE-2020-25230)
A vulnerability has been identified in LOGO! 8 BM incl. SIPLUS variants All versions V8.3. Due to the usage of an outdated cipher mode on port 10005/tcp, an attacker could extract the encryption key from a captured communication with the device. This plugin only works with Tenable.ot. Please visi...
PT-2023-26849 · Dell · Dell Emc Scg Policy Manager
Name of the Vulnerable Software and Affected Versions: Dell SCG Policy Manager version 5.16.00.14 Description: The issue concerns a broken cryptographic algorithm vulnerability. A remote unauthenticated attacker may potentially exploit this vulnerability by performing Man-in-the-Middle MitM...
Huawei EulerOS: Security Advisory for shim (EulerOS-SA-2023-2801)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Important: amazon-ssm-agent
Issue Overview: The x/crypto/ssh package before 0.0.0-20211202192323-5770296d904e of golang.org/x/crypto allows an attacker to panic an SSH server. CVE-2021-43565 A broken cryptographic algorithm flaw was found in golang.org/x/crypto/ssh. This issue causes a client to fail authentification with R...
CVE-2023-23347
HCL DRYiCE iAutomate is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information...
CVE-2023-23347
HCL DRYiCE iAutomate is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information...
Information disclosure
HCL DRYiCE iAutomate is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information...
CVE-2023-23346
HCL DRYiCE MyCloud is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information...
CVE-2023-23346
HCL DRYiCE MyCloud is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information...
Information disclosure
HCL DRYiCE MyCloud is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information...
CVE-2023-23347 Use of a broken cryptographic algorithm affects HCL DRYiCE iAutomate
HCL DRYiCE iAutomate is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information...
CVE-2023-23347
CVE-2023-23347 affects HCL DRYiCE iAutomate. The vulnerability arises from the use of a broken cryptographic algorithm, potentially compromising confidentiality and integrity of sensitive information. Documented risk scores indicate high severity in some feeds (NVD CVSS v3.1: AV=L/AC=L/PR=L/UI:N/...
CVE-2023-23347 Use of a broken cryptographic algorithm affects HCL DRYiCE iAutomate
HCL DRYiCE iAutomate is affected by the use of a broken cryptographic algorithm. An attacker can potentially compromise the confidentiality and integrity of sensitive information...