Lucene search
K

6 matches found

NVD
NVD
added 2022/08/16 1:15 p.m.23 views

CVE-2022-29959

Emerson OpenBSI through 2022-04-29 mishandles credential storage. It is an engineering environment for the ControlWave and Bristol Babcock line of RTUs. This environment provides access control functionality through user authentication and privilege management. The credentials for various users a...

5.5CVSS0.00252EPSS
Exploits0References2
Prion
Prion
added 2022/08/16 1:15 p.m.21 views

Authentication flaw

Emerson OpenBSI through 2022-04-29 mishandles credential storage. It is an engineering environment for the ControlWave and Bristol Babcock line of RTUs. This environment provides access control functionality through user authentication and privilege management. The credentials for various users a...

1.7CVSS5.6AI score0.00252EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2022/08/16 12:23 p.m.39 views

CVE-2022-29959

Emerson OpenBSI through 2022-04-29 mishandles credential storage. It is an engineering environment for the ControlWave and Bristol Babcock line of RTUs. This environment provides access control functionality through user authentication and privilege management. The credentials for various users a...

6AI score0.00252EPSS
Exploits0References2
OSV
OSV
added 2022/05/24 4:52 p.m.35 views

GHSA-C2GG-RRHC-FVVG Magento 2 Community Edition Cryptographic Flaw

A cryptograhic flaw exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. A weak cryptograhic mechanism is used to generate the intialization vector in multiple security relevant contexts...

7.5CVSS7.5AI score0.01186EPSS
Exploits0References4
NVD
NVD
added 2019/08/02 10:15 p.m.30 views

CVE-2019-7886

A cryptograhic flaw exists in Magento 2.1 prior to 2.1.18, Magento 2.2 prior to 2.2.9, Magento 2.3 prior to 2.3.2. A weak cryptograhic mechanism is used to generate the intialization vector in multiple security relevant contexts...

7.5CVSS7.5AI score0.01186EPSS
Exploits0References1
Veracode
Veracode
added 2017/05/16 1:26 a.m.16 views

Insecure Encryption

aescrypt uses a vulnerable encryption method. The method is vulnerable because it does not randomize the CBC IV when encrypting and decrypting data. This allows attackers to easily defeat the cryptographic mechanism by guessing the CBC IV...

7.5CVSS7.3AI score0.01148EPSS
Exploits0References1Affected Software1
Rows per page
Query Builder