241 matches found
CVE-2021-37063
There is a Cryptographic Issues vulnerability in Huawei Smartphone.Successful exploitation of this vulnerability may lead to read and delete images of Harmony devices...
Rails 加密问题漏洞
Rails is a set of open source web application frameworks based on the Ruby language from the Rails team. A cryptographic issue vulnerability exists in Rails multisite, where an attacker may be able to reuse cookies on different sites in multiple Rails applications...
Dell EMC IsilonSD Management Server 加密问题漏洞
DELL Dell EMC IsilonSD Management Server is a management server for EMC IsilonSD storage from Dell USA. Dell EMC IsilonSD Management Server is vulnerable to a cryptographic issue that arises from the use of a corrupted or risky encryption algorithm in the SSH component. A remote attacker could...
TianoCore EDK2 加密问题漏洞
EDK2 is a set of cross-platform firmware development environments from the TianoCore Tianocore community based on the UEFI and PI specifications. EDK2 suffers from a cryptographic issue vulnerability that stems from a potential security risk in the example EDK2 encrypted private key in IpSecDxe.e...
Had TLS Server Certificates Encryption Issue Vulnerability
Openssl is an open source capable of implementing the Secure Sockets Layer SSLv2/v3 and Secure Transport Layer TLSv1 protocols as a general purpose cryptographic library by the Openssl team. The product supports a variety of encryption algorithms , including symmetric ciphers , hash algorithms ,...
Linux kernel 加密问题漏洞
Linux kernel is the kernel used by Linux, the open source operating system of the Linux Foundation in the United States. Linux kernel is vulnerable to cryptographic issues, please refer to the vendor's homepage for more information...
Joomla Encryption Problem Vulnerability
Joomla is the U.S. Open Source Matters team of a set of PHP and MySQL development using open source, cross-platform content management system CMS. Joomla suffers from a cryptographic issue vulnerability that stems from not using the secure rand function during the generation of 2FA keys. No...
Mcafee Database Security Server and Mcafee Database Security Sensor Encryption Issue Vulnerability
Mcafee Database Security Server and Mcafee Database Security sensor are both products of Mcafee Corporation, China.Mcafee Database Security Server is a database security software. Mcafee Database Security Server is a database security software that provides users with an overall view of the...
TYPO3 Encryption Problem Vulnerability (CNVD-2020-66591)
TYPO3 is a free and open source content management system framework CMS/CMF of the Swiss TYPO3 Typo3 Association. Typo3 is vulnerable to a cryptographic issue that stems from storing user session identifiers in plaintext. The vulnerability can be exploited in combination with other issues to...
TYPO3 加密问题漏洞
TYPO3 is a free and open source content management system framework CMS/CMF of the Swiss TYPO3 Typo3 Association. Typo3 is vulnerable to a cryptographic issue that stems from storing user session identifiers in plaintext. The vulnerability can be exploited in combination with other issues to...
CVE-2020-8150
A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files...
Design/Logic Flaw
A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files...
CVE-2020-8150
CVE-2020-8150 relates to Nextcloud Server 19.0.1 and describes a cryptographic downgrade where an attacker can degrade the encryption scheme and break the integrity of encrypted files. Public docs indicate this vulnerability affects Nextcloud Server 19.0.1 and is discussed in the NC-SA-2020-039 a...
CVE-2020-8150
A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files...
F5 BIG-IP Encryption Problem Vulnerability (CNVD-2020-63629)
F5 BIG-IP is an application delivery platform from F5 USA that integrates network traffic management, application security management, load balancing and other functions. A cryptographic issue vulnerability exists in BIG-IP versions 14.1.0 through 14.1.0.1 and 14.1.2.5 through 14.1.2.7, which ste...
CVE-2020-6874
A ZTE product is impacted by the cryptographic issues vulnerability. The encryption algorithm is not properly used, so remote attackers could use this vulnerability for account credential enumeration attack or brute-force attack for password guessing. This affects: ZXIPTV, ZXIPTV-WEB-PV5.09.08.04...
Downgrade encryption scheme and break integrity through known-plaintext attack (NC-SA-2020-039)
A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files...
Python-RSA Cryptography Problem Vulnerability
Python-RSA is a Python library that supports encryption and decryption, signing, verification of signatures, and key generation from the Dutch software developer SYBREN A.STVEL. A cryptographic issue vulnerability exists in Python-RSA versions prior to 4.1, which can be exploited by an attacker t...
Yaws Encryption Problem Vulnerability
Yaws is a web server written in the Erlang language. A cryptographic issue vulnerability exists in yawsconfig.erl in Yaws versions 2.0.2 and 2.0.7. No detailed vulnerability details are provided at this time...
Oracle iPlanet Web Server is vulnerable to cryptographic issues (CNVD-2020-52060)
Oracle iPlanet Web Server OiWS is an American Oracle Oracle company's Web server mainly for medium-sized and large business applications. The Oracle iPlanet Web Server encryption issue vulnerability stems from a program that does not have proper access control for the admui/version URIs. An...