Lucene search
K

12 matches found

CNNVD
CNNVD
added 2025/12/09 12:0 a.m.6 views

Ivanti Endpoint Manager 数据伪造问题漏洞

Ivanti Endpoint Manager EPM is a suite of endpoint security managers from Ivanti USA. A data forgery issue vulnerability exists in versions prior to Ivanti Endpoint Manager 2024 SU4 SR1 that stems from improper cryptographic signature validation and could lead to remote code execution...

7.8CVSS7.7AI score0.00494EPSS
Exploits0References1
CNVD
CNVD
added 2025/10/17 12:0 a.m.11 views

Fortinet FortiClient MacOS installer data forgery issue vulnerability

Fortinet FortiClient MacOS installer is a client installer from Fortinet. The Fortinet FortiClient MacOS installer suffers from a data forgery issue vulnerability that stems from improper cryptographic signature validation, which can be exploited by an attacker to cause elevation of privilege for...

7.8CVSS6.9AI score0.00077EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-0760

Malware in sbrugna...

8.8CVSS8.6AI score0.03024EPSS
Exploits0References27
Cvelist
Cvelist
added 2025/04/27 7:4 p.m.36 views

CVE-2025-2866 PDF signature forgery with adbe.pkcs7.sha1 SubFilter

Improper Verification of Cryptographic Signature vulnerability in LibreOffice allows PDF Signature Spoofing by Improper Validation. In the affected versions of LibreOffice a flaw in the verification code for adbe.pkcs7.sha1 signatures could cause invalid signatures to be accepted as valid This...

2.4CVSS0.00096EPSS
Exploits0References1
Zero Day Initiative
Zero Day Initiative
added 2025/04/09 12:0 a.m.9 views

(Pwn2Own) Samsung Galaxy S24 Smart Switch Agent Improper Verification of Cryptographic Signature Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of Samsung Galaxy S24. User interaction is required to exploit this vulnerability in that the target must visit a malicious page or open a malicious file. The specific flaw exists within the Smart Switc...

7.5CVSS6.9AI score0.00237EPSS
Exploits0References1
CNNVD
CNNVD
added 2024/10/10 12:0 a.m.5 views

GitHub Enterprise Server 安全漏洞

GitHub Enterprise Server is an open source application from GitHub in the United States. It provides a platform for setting up your own GitHub instance as a virtual appliance, thus providing a scalable, easy-to-manage platform. A security vulnerability exists in GitHub Enterprise Server that stem...

9.5CVSS9.1AI score0.22443EPSS
Exploits0References5
Veracode
Veracode
added 2024/09/23 4:22 p.m.7 views

Improper Verification Of Cryptographic Signature

Keycloak is vulnerable to an Improper Verification of Cryptographic Signature. The vulnerability is due to incorrect validation logic in the XMLSignatureUtil class, where the SAML signature's scope is determined based on its position in the XML document, rather than using the Reference element th...

7.7CVSS6.9AI score0.0203EPSS
Exploits0References17Affected Software1
CVE
CVE
added 2023/08/29 8:48 a.m.89 views

CVE-2023-23772

The CVE-2023-23772 issue concerns the Motorola MBTS Site Controller, where firmware update packages are not validated cryptographically. The root cause is lack of firmware update authenticity checks, enabling an authenticated attacker to potentially achieve arbitrary code execution, extract secre...

8.8CVSS8.7AI score0.00419EPSS
Exploits0References1Affected Software1
Positive Technologies
Positive Technologies
added 2023/08/29 12:0 a.m.7 views

PT-2023-19195 · Motorola · Motorola Mbts Site Controller

Name of the Vulnerable Software and Affected Versions: Motorola MBTS Site Controller affected versions not specified Description: The Motorola MBTS Site Controller fails to check firmware update authenticity due to a lack of cryptographic signature validation for firmware update packages. This...

8.8CVSS8.8AI score0.00419EPSS
Exploits0References6
NVD
NVD
added 2021/08/02 1:15 p.m.42 views

CVE-2021-37160

A firmware validation issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. There is no firmware validation e.g., cryptographic signature validation during a File Upload for a firmware update...

9.8CVSS0.08227EPSS
Exploits0References4
Cvelist
Cvelist
added 2021/08/02 12:43 p.m.41 views

CVE-2021-37160

A firmware validation issue was discovered in HMI3 Control Panel in Swisslog Healthcare Nexus Panel operated by released versions of software before Nexus Software 7.2.5.7. There is no firmware validation e.g., cryptographic signature validation during a File Upload for a firmware update...

9.6AI score0.08227EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/01/21 12:0 a.m.9 views

Idpy Pysaml2 Data Forgery Issue Vulnerability

Idpy Pysaml2 is a Python-based SAML server implementation from the Idpy community. Idpy PySAML2 before 6.5.0 suffers from a data forgery issue vulnerability that stems from a cryptographic signature validation error...

6.5CVSS6.9AI score0.0118EPSS
Exploits3References13
Rows per page
Query Builder