Lucene search
+L

56 matches found

EUVD
EUVD
added 2026/07/08 3:46 p.m.4 views

EUVD-2026-42317

Handshakes which used Encrypted Client Hello could be de-anonymized by a passive network observer due to a disclosure of pre-shared key identities in the unencrypted client hello...

5.3CVSS5.9AI score0.00413EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2026/07/08 3:46 p.m.4 views

CVE-2026-42505

Handshakes which used Encrypted Client Hello could be de-anonymized by a passive network observer due to a disclosure of pre-shared key identities in the unencrypted client hello...

5.3CVSS6.1AI score0.00413EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/07/07 12:0 a.m.9 views

PT-2026-56479

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Handshakes using Encrypted Client Hello ECH, a mechanism designed to encrypt the initial handshake of a TLS connection to protect client privacy, could be...

5.3CVSS6.1AI score0.00413EPSS
Exploits0References93
EUVD
EUVD
added 2025/10/07 12:30 a.m.29 views

EUVD-2020-18842

Malware in sbrugna...

7.4CVSS5.6AI score0.01645EPSS
Exploits1References13
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-1975

Malicious code in bioql PyPI...

4CVSS6.3AI score0.01688EPSS
Exploits0References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2025-13505

Malicious code in bioql PyPI...

7.2CVSS6.6AI score0.00214EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/07/29 12:0 a.m.4 views

Benchmarking Fraud Detectors on Private Graph Data

We introduce the novel problem of benchmarking fraud detectors on private graph-structured data. Currently, many types of fraud are managed in part by automated detection algorithms that operate over graphs. We consider the scenario where a data holder wishes to outsource development of fraud...

6.9AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 7:46 p.m.7 views

CVE-2021-32750

MuWire is a file publishing and networking tool that protects the identity of its users by using I2P technology. Users of MuWire desktop client prior to version 0.8.8 can be de-anonymized by an attacker who knows their full ID. An attacker could send a message with a subject line containing a URL...

6.8CVSS6.5AI score0.00842EPSS
Exploits1References1
CVE
CVE
added 2025/05/05 6:35 p.m.60 views

CVE-2025-46340

Misskey CSS style injection vulnerability (CVE-2025-46340) affects 12.0.0 up to 2025.4.0 due to inadequate validation in UrlPreviewService and MkUrlPreview, enabling arbitrary CSS in MkUrlPreview and potential de-anonymization/related client attacks. UrlPreviewService.wrap avoids non-http/https U...

7.2CVSS7.2AI score0.00214EPSS
Exploits0References2Affected Software1
Positive Technologies
Positive Technologies
added 2025/05/05 12:0 a.m.17 views

PT-2025-19769 · Misskey · Misskey

Name of the Vulnerable Software and Affected Versions: Misskey versions 12.0.0 through 2025.4.0 Description: The issue arises from an oversight in validation performed in UrlPreviewService and MkUrlPreview, allowing an attacker to inject arbitrary CSS into the MkUrlPreview component. This can lea...

7.2CVSS6.7AI score0.00214EPSS
Exploits0References8
OSV
OSV
added 2025/04/25 3:31 p.m.6 views

GHSA-69M9-RPRC-2X7G Moodle reveals student identities through assignment submissions search on anonymous submissions

A flaw has was found in Moodle where anonymous assignment submissions can be de-anonymized via search, revealing student identities...

4.3CVSS4.6AI score0.00288EPSS
Exploits0References6
Github Security Blog
Github Security Blog
added 2025/04/25 3:31 p.m.17 views

Moodle reveals student identities through assignment submissions search on anonymous submissions

A flaw has was found in Moodle where anonymous assignment submissions can be de-anonymized via search, revealing student identities...

4.3CVSS7AI score0.00288EPSS
Exploits0References6Affected Software1
NVD
NVD
added 2025/04/25 3:15 p.m.14 views

CVE-2025-3628

A flaw has was found in Moodle where anonymous assignment submissions can be de-anonymized via search, revealing student identities...

4.3CVSS0.00288EPSS
Exploits0References2
OSV
OSV
added 2025/04/25 2:42 p.m.7 views

CVE-2025-3628 Moodle: moodle assignment submission search leaks anonymous student identities

A flaw has was found in Moodle where anonymous assignment submissions can be de-anonymized via search, revealing student identities...

4.3CVSS5.9AI score0.00288EPSS
Exploits0References5
RedhatCVE
RedhatCVE
added 2025/04/22 11:5 p.m.19 views

CVE-2025-3628

A flaw has was found in Moodle where anonymous assignment submissions can be de-anonymized via search, revealing student identities...

4.3CVSS6.8AI score0.00288EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2025/04/22 12:0 a.m.5 views

PT-2025-17910

Name of the Vulnerable Software and Affected Versions Moodle affected versions not specified Description A flaw was found in Moodle where anonymous assignment submissions can be de-anonymized via search, revealing student identities. Recommendations At the moment, there is no information about a...

4.3CVSS6.3AI score0.00288EPSS
Exploits0References18
CNNVD
CNNVD
added 2025/04/22 12:0 a.m.5 views

Moodle 信息泄露漏洞

Moodle is Moodle open source set of free e-learning software platform, also known as course management system, learning management system or virtual learning environment. Moodle suffers from an information disclosure vulnerability that stems from the fact that anonymous assignment submissions can...

4.3CVSS6.3AI score0.00288EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/02/05 1:35 p.m.13 views

CVE-2020-26230

Radar COVID is the official COVID-19 exposure notification app for Spain. In affected versions of Radar COVID, identification and de-anonymization of COVID-19 positive users that upload Radar COVID TEKs to the Radar COVID server is possible. This vulnerability enables the identification and...

7.4CVSS6.3AI score0.01645EPSS
Exploits1References14
NVD
NVD
added 2024/10/09 6:15 a.m.21 views

CVE-2023-36325

i2p before 2.3.0 Java allows de-anonymizing the public IPv4 and IPv6 addresses of i2p hidden services aka eepsites via a correlation attack across the IPv4 and IPv6 addresses that occurs when a tunneled, replayed message has a behavior discrepancy it may be dropped, or may result in a Wrong...

3.7CVSS0.00487EPSS
Exploits0References3
Malwarebytes
Malwarebytes
added 2024/09/19 8:27 p.m.9 views

Tor anonymity compromised by law enforcement. Is it still safe to use?

Despite people generally considering the Tor network as an essential tool for anonymous browsing, german law enforcement agencies have managed to de-anonymize Tor users after putting surveillance on Tor servers for months. Before we go into the what the agencies did, let's take a look at some...

6.7AI score
Exploits0
Rows per page
Query Builder