Lucene search
K

34 matches found

NVD
NVD
added 2026/07/07 8:16 p.m.7 views

CVE-2026-44877

An unauthenticated remote disclosure vulnerability has been identified in HPE Networking Instant On 1830, 1930, and 1960 Switches. Successful exploitation of this vulnerability could allow an unauthenticated remote threat actor to access sensitive cryptographic secrets on a vulnerable system...

6.5CVSS0.00277EPSS
Exploits0References1
CVE
CVE
added 2026/07/07 7:3 p.m.13 views

CVE-2026-44877

CVE-2026-44877 affects HPE Networking Instant On 1830, 1930, and 1960 switches. It is described as an unauthenticated remote disclosure vulnerability that could allow a remote attacker to access sensitive cryptographic secrets on a vulnerable system. CVSS‑3.1 metrics indicate Network access, Low ...

6.5CVSS5.9AI score0.00277EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/07/07 7:3 p.m.7 views

CVE-2026-44877

An unauthenticated remote disclosure vulnerability has been identified in HPE Networking Instant On 1830, 1930, and 1960 Switches. Successful exploitation of this vulnerability could allow an unauthenticated remote threat actor to access sensitive cryptographic secrets on a vulnerable system...

6.5CVSS5.9AI score0.00277EPSS
Exploits0References2Affected Software1
Cvelist
Cvelist
added 2026/07/07 7:3 p.m.32 views

CVE-2026-44877 Unauthenticated Remote Disclosure of Cryptographic Secrets

An unauthenticated remote disclosure vulnerability has been identified in HPE Networking Instant On 1830, 1930, and 1960 Switches. Successful exploitation of this vulnerability could allow an unauthenticated remote threat actor to access sensitive cryptographic secrets on a vulnerable system...

6.5CVSS0.00277EPSS
Exploits0References1
HPE Security Bulletins
HPE Security Bulletins
added 2026/07/07 12:0 a.m.6 views

HPESBNW05038 rev.1 - HPE Networking Instant On Switch Remote Unauthenticated Disclosure of Cryptographic Secrets

Potential Security Impact: Local: Access Restriction Bypass SUPPORTED SOFTWARE VERSIONS: ONLY impacted versions are listed. Aruba Instant On 1930 Switch Series - Please refer to the Vulnerability Summary for Affected Version Information Affected Products HPE Networking Instant On 1830, 1930, and...

6.5CVSS6.1AI score0.00277EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2026/05/21 11:42 a.m.10 views

CVE-2026-40975

A flaw was found in Spring Boot. The $random.value property source utilizes a weak pseudo-random number generator PRNG, meaning the values it produces are not sufficiently random for use as cryptographic secrets. An attacker could potentially predict these values, which may lead to information...

8.2CVSS5.8AI score0.00312EPSS
Exploits0References4
RedhatCVE
RedhatCVE
added 2026/01/09 10:17 a.m.12 views

CVE-2019-18672

Insufficient checks in the finite state machine of the ShapeShift KeepKey hardware wallet before firmware 6.2.2 allow a partial reset of cryptographic secrets to known values via crafted messages. Notably, this breaks the security of U2F for new server registrations and invalidates existing...

7.5CVSS7AI score0.00783EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.13 views

EUVD-2021-30327

Malicious code in bioql PyPI...

6.2CVSS6.5AI score0.00162EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.20 views

EUVD-2022-25027

Malicious code in bioql PyPI...

7.6CVSS7.6AI score0.00287EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/07/22 12:0 a.m.6 views

PT-2025-30401

The BSK PDF Manager plugin for WordPress is vulnerable to Stored Cross-Site Scripting via SVG File uploads in all versions up to, and including, 3.7.1 due to insufficient input sanitization and output escaping. This makes it possible for authenticated attackers, with Administrator-level access an...

5.5CVSS5AI score0.00281EPSS
Exploits0References4
Kitploit
Kitploit
added 2023/07/07 12:30 p.m.94 views

Badsecrets - A Library For Detecting Known Secrets Across Many Web Frameworks

A pure python library for identifying the use of known or very weak cryptographic secrets across a variety of platforms. The project is designed to be both a repository of various "known secrets" for example, ASP.NET machine keys found in examples in tutorials, and to provide a language-agnostic...

9.8CVSS9.8AI score0.75098EPSS
Exploits5References7
OSV
OSV
added 2022/06/24 3:15 p.m.4 views

CVE-2022-1746

The authentication mechanism used by poll workers to administer voting using the tested version of Dominion Voting Systems ImageCast X can expose cryptographic secrets used to protect election information. An attacker could leverage this vulnerability to gain access to sensitive information and...

7.6CVSS5.8AI score0.00287EPSS
Exploits0References1
Prion
Prion
added 2022/06/24 3:15 p.m.18 views

Authentication flaw

The authentication mechanism used by poll workers to administer voting using the tested version of Dominion Voting Systems ImageCast X can expose cryptographic secrets used to protect election information. An attacker could leverage this vulnerability to gain access to sensitive information and...

7.2CVSS7.5AI score0.00287EPSS
Exploits0References1Affected Software1
CVE
CVE
added 2022/06/24 3:0 p.m.89 views

CVE-2022-1746

CVE-2022-1746 concerns Dominion Voting Systems ImageCast X. The vulnerability is an authentication/privilege assignment flaw in the poll-worker authentication mechanism that could expose cryptographic secrets protecting election information. An attacker could leverage this to access sensitive dat...

7.6CVSS7.6AI score0.00287EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2022/06/24 3:0 p.m.7 views

CVE-2022-1746 2.2.8 INCORRECT PRIVILEGE ASSIGNMENT CWE-266

The authentication mechanism used by poll workers to administer voting using the tested version of Dominion Voting Systems ImageCast X can expose cryptographic secrets used to protect election information. An attacker could leverage this vulnerability to gain access to sensitive information and...

7.6AI score0.00287EPSS
Exploits0References1
Cvelist
Cvelist
added 2022/06/24 3:0 p.m.47 views

CVE-2022-1746 2.2.8 INCORRECT PRIVILEGE ASSIGNMENT CWE-266

The authentication mechanism used by poll workers to administer voting using the tested version of Dominion Voting Systems ImageCast X can expose cryptographic secrets used to protect election information. An attacker could leverage this vulnerability to gain access to sensitive information and...

7.8AI score0.00287EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2022/06/03 12:0 a.m.5 views

PT-2022-3264

Name of the Vulnerable Software and Affected Versions Dominion Voting Systems ImageCast X affected versions not specified Description The issue is related to the authentication mechanism used by administrators of the ImageCast X device, which is associated with errors in privilege assignment. Thi...

7.6CVSS7.1AI score0.00287EPSS
Exploits0References8
OSV
OSV
added 2022/03/04 1:15 p.m.7 views

CVE-2021-43392

STMicroelectronics STSAFE-J 1.1.4, J-SAFE3 1.2.5, and J-SIGN sometimes allow attackers to obtain information on cryptographic secrets. This is associated with the ECDSA signature algorithm on the Java Card J-SAFE3 and STSAFE-J platforms exposing a 3.0.4 Java Card API. It is exploitable for STSAFE...

6.2CVSS5.8AI score0.00162EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2022/03/04 1:15 p.m.2 views

CVE-2021-43392

STMicroelectronics STSAFE-J 1.1.4, J-SAFE3 1.2.5, and J-SIGN sometimes allow attackers to obtain information on cryptographic secrets. This is associated with the ECDSA signature algorithm on the Java Card J-SAFE3 and STSAFE-J platforms exposing a 3.0.4 Java Card API. It is exploitable for STSAFE...

6.2CVSS6.5AI score0.00162EPSS
Exploits0References3
Prion
Prion
added 2022/03/04 1:15 p.m.31 views

Code injection

STMicroelectronics STSAFE-J 1.1.4, J-SAFE3 1.2.5, and J-SIGN sometimes allow attackers to obtain information on cryptographic secrets. This is associated with the ECDSA signature algorithm on the Java Card J-SAFE3 and STSAFE-J platforms exposing a 3.0.4 Java Card API. It is exploitable for STSAFE...

1.9CVSS6.2AI score0.00162EPSS
Exploits0References2Affected Software2
Rows per page
Query Builder