Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

59 matches found

EUVD
EUVDadded 2026/06/12 10:0 a.m.7 views

EUVD-2026-36411

A Missing Required Cryptographic Step vulnerability has been identified in Moxa's embedded Linux firmware for industrial computers and controllers. This vulnerability represents an incomplete remediation of CVE-2026-0714. The firmware introduced TPM2 parameter encryption as a countermeasure again...

7CVSS5.1AI score0.00115EPSS
Exploits0References1
Cvelist
Cvelistadded 2026/06/12 10:0 a.m.31 views

CVE-2026-9266

A Missing Required Cryptographic Step vulnerability has been identified in Moxa's embedded Linux firmware for industrial computers and controllers. This vulnerability represents an incomplete remediation of CVE-2026-0714. The firmware introduced TPM2 parameter encryption as a countermeasure again...

7CVSS0.0007EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2026/06/12 12:0 a.m.9 views

PT-2026-48857

A Missing Required Cryptographic Step vulnerability has been identified in Moxa's embedded Linux firmware for industrial computers and controllers. This vulnerability represents an incomplete remediation of CVE-2026-0714. The firmware introduced TPM2 parameter encryption as a countermeasure again...

7CVSS5.2AI score0.0007EPSS
Exploits0References2
Snyk
Snykadded 2026/06/09 6:32 p.m.8 views

Missing Cryptographic Step

Overview Affected versions of this package are vulnerable to Missing Cryptographic Step in EVPPKEYderivesetpeer when called with a DHX X9.42 peer key. A malicious peer can recover the victim's private key. A peer presenting an X9.42 key that carries the victim's p and g, and a forged q passes all...

8.2CVSS5.3AI score0.00259EPSS
Exploits0References2
Snyk
Snykadded 2026/06/04 8:16 p.m.6 views

Missing Cryptographic Step

Overview Affected versions of this package are vulnerable to Missing Cryptographic Step due to the lack of enforcement for receiving a cryptographically-signed final chunk before the termination of the outer HTTP body. An attacker can cause undetected truncation of chunked messages by forwarding...

8.7CVSS5.4AI score0.00167EPSS
Exploits0References2
Veracode
Veracodeadded 2026/04/15 11:29 a.m.10 views

Missing Cryptographic Step

jsrsasign is vulnerable to Missing Cryptographic Step. The vulnerability is due to improper handling of invalid DSA signature values without retry logic, which allows an attacker to recover the private key by forcing signature parameters to predictable values...

9.4CVSS5.7AI score0.00217EPSS
Exploits1References4Affected Software1
Microsoft CVE
Microsoft CVEadded 2026/04/14 2:0 p.m.4 views

MITRE: CVE-2026-25250 Secure Boot disable Eazy Fix

Missing cryptographic step in Windows Secure Boot allows an authorized attacker to bypass a security feature locally...

6CVSS6.2AI score
Exploits0
ATTACKERKB
ATTACKERKBadded 2026/03/23 5:0 a.m.2 views

CVE-2026-4601

Versions of the package jsrsasign before 11.1.1 are vulnerable to Missing Cryptographic Step via the KJUR.crypto.DSA.signWithMessageHash process in the DSA signing implementation. An attacker can recover the private key by forcing r or s to be zero, so the library emits an invalid signature witho...

9.4CVSS5.8AI score0.00217EPSS
Exploits1References5
OSV
OSVadded 2026/03/19 9:17 p.m.3 views

DEBIAN-CVE-2026-3230

Missing required cryptographic step in the TLS 1.3 client HelloRetryRequest handshake logic in wolfSSL could lead to a compromise in the confidentiality of TLS-protected communications via a crafted HelloRetryRequest followed by a ServerHello message that omits the required keyshare extension,...

2.7CVSS5.3AI score0.00209EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2026/03/02 4:53 p.m.4 views

CVE-2025-47383 Missing Cryptographic Step in Data Modem

Weak configuration may lead to cryptographic issue when a VoWiFi call is triggered from UE...

7.2CVSS5.9AI score0.0013EPSS
Exploits0References1
CVE
CVEadded 2026/03/02 4:53 p.m.21 views

CVE-2025-47383

CVE-2025-47383 describes a weak configuration that may cause a cryptographic issue when a VoWiFi call is triggered from UE. Connected records repeat the description and list a CVSS v3.1 base score of 7.2 (HIGH) with NETWORK attack vector, low attack complexity, and high impact on confidentiality,...

7.2CVSS5.9AI score0.0013EPSS
Exploits0References1Affected Software1
Snyk
Snykadded 2026/02/16 5:2 a.m.3 views

Missing Cryptographic Step

Overview org.webjars.npm:jsrsasign is a free pure JavaScript cryptographic library. Affected versions of this package are vulnerable to Missing Cryptographic Step via the KJUR.crypto.DSA.signWithMessageHash process in the DSA signing implementation. An attacker can recover the private key by...

9.4CVSS5.9AI score0.00217EPSS
Exploits1References2
Snyk
Snykadded 2026/02/16 5:2 a.m.3 views

Missing Cryptographic Step

Overview jsrsasign is a free pure JavaScript cryptographic library. Affected versions of this package are vulnerable to Missing Cryptographic Step via the KJUR.crypto.DSA.signWithMessageHash process in the DSA signing implementation. An attacker can recover the private key by forcing r or s to be...

9.4CVSS5.8AI score0.00217EPSS
Exploits1References2
Snyk
Snykadded 2026/01/27 4:49 p.m.5 views

Missing Cryptographic Step

Overview Affected versions of this package are vulnerable to Missing Cryptographic Step that exposes the final 1-15 bytes of a message when the low-level OCB API is used directly with AES-NI or other hardware accelerated code paths. Common implementations of openssl using EVP are not vulnerable...

6.3CVSS5.9AI score0.00115EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2025/11/12 6:1 p.m.4 views

CVE-2025-60704

Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network...

7.5CVSS5.5AI score0.00483EPSS
Exploits0References1
NVD
NVDadded 2025/11/11 6:15 p.m.3 views

CVE-2025-60704

Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network...

7.5CVSS0.00483EPSS
Exploits0References1
OSV
OSVadded 2025/11/11 6:15 p.m.2 views

CVE-2025-60704

Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network...

7.5CVSS5.8AI score0.00483EPSS
Exploits0References1
ATTACKERKB
ATTACKERKBadded 2025/11/11 5:59 p.m.4 views

CVE-2025-60704

Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network...

7.5CVSS5.5AI score0.00483EPSS
Exploits0References2Affected Software24
Microsoft CVE
Microsoft CVEadded 2025/11/11 8:0 a.m.3 views

Windows Kerberos Elevation of Privilege Vulnerability

Missing cryptographic step in Windows Kerberos allows an unauthorized attacker to elevate privileges over a network...

7.5CVSS5.6AI score0.00483EPSS
Exploits0
EUVD
EUVDadded 2025/10/07 12:30 a.m.3 views

EUVD-2021-2019

Malware in sbrugna...

5.3CVSS5.2AI score0.0046EPSS
Exploits1References6
Rows per page
Query Builder