241 matches found
CVE-2023-33054
CVE-2023-33054 is linked to a cryptographic issue in the Qualcomm GPS HLOS Driver during GNSS assistance data download. Connected PT-12561 entries and vendor bulletins corroborate the GPS HLOS Driver context, but none of the connected documents provide concrete affected versions, root-cause detai...
PT-2023-24161 · Qualcomm · Gps Hlos Driver
Name of the Vulnerable Software and Affected Versions: GPS HLOS Driver affected versions not specified Description: A cryptographic issue exists in the GPS HLOS Driver while downloading Qualcomm GNSS assistance data. Recommendations: At the moment, there is no information about a newer version th...
Zoom VDI Meeting Client < 5.16.0 Vulnerability (ZSB-23051)
The version of Zoom VDI Meeting Client installed on the remote host is prior to 5.16.0. It is, therefore, affected by a vulnerability as referenced in the ZSB-23051 advisory. - Cryptographic issues with In-Meeting Chat for soZoom clients may allow a privileged user to conduct an information...
CVE-2023-28556
Cryptographic issue in HLOS during key management...
CVE-2023-28556
Technical details for CVE-2023-28556 are not publicly provided in the supplied documents. No concrete affected products, versions, root cause or fixes are disclosed here. Monitor for updates from vendors and security bulletins.
CVE-2023-28556 Improper Authorization in HLOS
Cryptographic issue in HLOS during key management...
PT-2023-21803 · Hlos · Hlos
Name of the Vulnerable Software and Affected Versions: HLOS affected versions not specified Description: A cryptographic issue exists in HLOS during key management. Recommendations: At the moment, there is no information about a newer version that contains a fix for this vulnerability...
Qualcomm Releases Patch for 3 new Zero-Days Under Active Exploitation
Chipmaker Qualcomm has released security updates to address 17 vulnerabilities in various components, while warning that three other zero-days have come under active exploitation. Of the 17 flaws, three are rated Critical, 13 are rated High, and one is rated Medium in severity. "There are...
CVE-2023-3350
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By firstly downloading the log file, an attacker could retrieve the SQL query sent to the application in plaint text. This log file contains the password hashes coded with AES-CBC-128 bits algorithm, whi...
Design/Logic Flaw
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By firstly downloading the log file, an attacker could retrieve the SQL query sent to the application in plaint text. This log file contains the password hashes coded with AES-CBC-128 bits algorithm, whi...
CVE-2023-3350 Cryptographic Issues on IBERMATICA RPS
A Cryptographic Issue vulnerability has been found on IBERMATICA RPS, affecting version 2019. By firstly downloading the log file, an attacker could retrieve the SQL query sent to the application in plaint text. This log file contains the password hashes coded with AES-CBC-128 bits algorithm, whi...
CVE-2023-3350
CVE-2023-3350 affects IBERMATICA RPS 2019. A cryptographic issue lets an attacker, by downloading a log file, access SQL queries in plaintext and the log contains password hashes encrypted with AES-CBC-128; these hashes can be decrypted via a .NET function to obtain plaintext passwords. The CVSS-...
CVE-2023-28540
Cryptographic issue in Data Modem due to improper authentication during TLS handshake...
CVE-2023-28540
CVE-2023-28540 affects Qualcomm Data Modem; root cause is cryptographic issue due to improper authentication during TLS handshake. Public docs (NVD/Red Hat/PRION) describe a cryptographic/authentication flaw with high impact (I=High, C=High) on data confidentiality/integrity. The Qualcomm securit...
CVE-2023-28540 Improper Authentication in Data Modem
Cryptographic issue in Data Modem due to improper authentication during TLS handshake...
CVE-2023-28540 Improper Authentication in Data Modem
Cryptographic issue in Data Modem due to improper authentication during TLS handshake...
CVE-2023-21626
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key...
CVE-2023-21652
Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use...
Authentication flaw
Cryptographic issue in HLOS due to improper authentication while performing key velocity checks using more than one key...
Stack overflow
Cryptographic issue in HLOS as derived keys used to encrypt/decrypt information is present on stack after use...