Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

9 matches found

NVD
NVDadded 2026/06/12 4:16 p.m.11 views

CVE-2026-50086

The Aqara IAM/SSO gateway gw-builder.aqara.com exposes bidirectional AES round-trups against the platform's signing key without authentication. This is an instance of "CWE-306: Missing Authentication for Critical Function" and "CWE-327: Use of a Broken or Risky Cryptographic Algorithm," and has a...

10CVSS0.00222EPSS
Exploits0References2
OSV
OSVadded 2026/05/20 10:16 p.m.10 views

UBUNTU-CVE-2026-47372

Crypt::SaltedHash versions through 0.09 for Perl generate insecure random values for salts. These versions use the built-in rand function, which is predictable and unsuitable for cryptography...

9.1CVSS5.8AI score0.00397EPSS
Exploits0References7
Vulnrichment
Vulnrichmentadded 2026/04/06 7:45 p.m.3 views

CVE-2026-5682 Meesho Online Shopping App com.meesho.supply endpoint risky encryption

A vulnerability has been found in Meesho Online Shopping App up to 27.3 on Android. Affected is an unknown function of the file /api/endpoint of the component com.meesho.supply. Such manipulation leads to risky cryptographic algorithm. The attack may be performed from remote. The attack requires ...

6.3CVSS5.1AI score0.00188EPSS
Exploits0References4
Gentoo Linux
Gentoo Linuxadded 2025/11/26 12:0 a.m.8 views

librnp: Weak random number generation

Background librnp is a high performance C++ OpenPGP library. Description The affected librnp version generated weak session keys for its public key encryption PKESK mode. Impact Messages encrypted using the affected librnp version might be readable by an attacker with just the public key...

8.7CVSS6.7AI score0.00274EPSS
Exploits0
CVE
CVEadded 2025/10/10 6:33 a.m.13 views

CVE-2025-21062

The vulnerability CVE-2025-21062 affects Samsung Smart Switch, prior to version 3.7.67.2. The issue stems from use of a broken or risky cryptographic algorithm in the restoration process, allowing local attackers to replace the restoring application. Exploitation requires user interaction. Impact...

7.8CVSS6.2AI score0.00094EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2025/09/02 5:15 p.m.8 views

CVE-2025-9828

A vulnerability was determined in Tenda CP6 11.10.00.243. The affected element is the function sub2B7D04 of the component uhttp. Executing manipulation can lead to risky cryptographic algorithm. The attack may be launched remotely. This attack is characterized by high complexity. The exploitabili...

6.3CVSS0.00315EPSS
Exploits1References5
Positive Technologies
Positive Technologiesadded 2025/09/02 12:0 a.m.6 views

PT-2025-35587

Name of the Vulnerable Software and Affected Versions: Tenda CP6 version 11.10.00.243 Description: A vulnerability exists in the function sub 2B7D04 of the uhttp component. Manipulation of this function can lead to a risky cryptographic algorithm. This attack can be launched remotely and is...

6.3CVSS4.4AI score0.00315EPSS
Exploits1References7
OSV
OSVadded 2025/05/19 2:15 a.m.1 views

ALPINE-CVE-2025-23166

The C++ method SignTraits::DeriveBits may incorrectly call ThrowException based on user-supplied inputs when executing in a background thread, crashing the Node.js process. Such cryptographic operations are commonly applied to untrusted inputs. Thus, this mechanism potentially allows an adversary...

7.5CVSS6.9AI score0.00763EPSS
Exploits0References1
OSV
OSVadded 2019/03/21 4:1 p.m.2 views

DEBIAN-CVE-2019-9898

Potential recycling of random numbers used in cryptography exists within PuTTY before 0.71...

9.8CVSS9.2AI score0.03937EPSS
Exploits0References1
Rows per page
Query Builder