Lucene search
K

82 matches found

CVE
CVE
added 5 days ago12 views

CVE-2025-63579

CVE-2025-63579 affects Kyocera devices using Command Center RX for various TASKalfa models (e.g., 2552ci, 3252ci, 2553ci, 3253ci, 3554ci, 4052ci, 5052ci, 6052ci, 7052ci, 8052ci, 7353ci, 8353ci, 2554ci, 3254ci, 505). The description reports that unauthorized access can export all information store...

7.5CVSS5.9AI score0.00199EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 6 days ago4 views

Apache Tomcat: Apache Tomcat: Information disclosure via Padding Oracle vulnerability in EncryptInterceptor

A flaw was found in Apache Tomcat. This Padding Oracle vulnerability, present in the EncryptInterceptor with its default configuration, could allow a remote attacker to decrypt sensitive information. By exploiting weaknesses in the encryption padding, an attacker may be able to gain unauthorized...

7.5CVSS7.2AI score0.0504EPSS
Exploits1References5
EUVD
EUVD
added 2026/06/05 10:18 a.m.10 views

EUVD-2026-34811

The linqi application contains hardcoded cryptographic keys. Additionally, the application uses a weak algorithm with a limited ASCII charset to dynamically generate Initialization Vectors IVs for AES/CBC encryption, making known-plaintext attacks feasible. An attacker with local access can...

8.5CVSS5.5AI score0.00073EPSS
Exploits0References1
SUSE CVE
SUSE CVE
added 2026/05/28 3:54 a.m.14 views

SUSE CVE-2026-46010

In the Linux kernel, the following vulnerability has been resolved: rxrpc: Fix error handling in rxgkextracttoken Fix a missing bit of error handling in rxgkextracttoken: in the event that rxgkdecryptskb returns -ENOMEM, it should just return that rather than continuing on for anything else, it...

5.5CVSS5.8AI score0.00403EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/04/23 12:0 a.m.10 views

IBM多款产品 加密问题漏洞

IBM Verify Identity Access Container is an identity and access management solution for providing secure single sign-on and access control. A weak cryptographic algorithm vulnerability exists in IBM Verify Identity Access Container. The vulnerability stems from the product's use of a...

6.5CVSS5.8AI score0.00181EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/01 8:46 p.m.4 views

CVE-2025-13916 Multiple vulnerabilities have been addressed in IBM Aspera Shares

IBM Aspera Shares 1.9.9 through 1.11.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.9CVSS5.9AI score0.00203EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2026/03/26 11:3 p.m.4 views

CVE-2025-64647

IBM Concert 1.0.0 through 2.2.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

7.5CVSS5.8AI score0.00202EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/25 12:0 a.m.9 views

IBM Concert 安全漏洞

IBM Concert is IBM's collaborative application lifecycle management platform. IBM Concert has a security vulnerability that stems from the use of a weaker-than-expected encryption algorithm. An attacker could exploit the vulnerability to decrypt highly sensitive information...

7.5CVSS5.8AI score0.00202EPSS
Exploits0References2
CVE
CVE
added 2026/02/17 8:30 p.m.14 views

CVE-2025-36379

IBM Security QRadar EDR and IBM Security ReaQta are affected by CVE-2025-36379, where weaker-than-expected cryptographic algorithms could allow decryption of sensitive information. Affected versions: QRadar EDR 3.12 through 3.12.23 (and ReaQta 3.12 through 3.12.23). Root cause: use of insufficien...

7.5CVSS5.5AI score0.00143EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/01/29 6:5 p.m.4 views

CVE-2025-13399 Insecure Encryption in Communication with the Web Interface on TP-Link VX800v

A weakness in the web interface’s application layer encryption in VX800v v1.0 allows an adjacent attacker to brute force the weak AES key and decrypt intercepted traffic. Successful exploitation requires network proximity but no authentication, and may result in high impact to confidentiality,...

7.7CVSS5.9AI score0.00151EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/01/22 12:0 a.m.7 views

PT-2026-4282

Name of the Vulnerable Software and Affected Versions affected versions not specified Description An attacker could decrypt sensitive data, impersonate legitimate users or devices, and potentially gain access to network resources for lateral attacks. Recommendations At the moment, there is no...

6.1CVSS5.3AI score0.00099EPSS
Exploits0References4
OSV
OSV
added 2025/12/26 5:16 a.m.3 views

CVE-2025-52601

Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems ICS and OT/IoT security, has discovered a vulnerability in Device Manager that a hardcoded encryption key for sensitive information. An attacker can use key to decrypt sensitive information. T...

7.8CVSS5.8AI score0.00091EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/12/26 4:29 a.m.21 views

CVE-2025-52601 Hardcoding sensitive information

Cybersecurity Nozomi Networks Labs, a specialized security company focused on Industrial Control Systems ICS and OT/IoT security, has discovered a vulnerability in Device Manager that a hardcoded encryption key for sensitive information. An attacker can use key to decrypt sensitive information. T...

6.3CVSS0.00091EPSS
Exploits0References1
OSV
OSV
added 2025/11/24 9:16 p.m.4 views

CVE-2025-36150

IBM Concert 1.0.0 through 2.0.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

7.5CVSS6.6AI score
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/11/24 12:0 a.m.6 views

PT-2025-47961

Name of the Vulnerable Software and Affected Versions IBM Concert versions 1.0.0 through 2.0.0 Description IBM Concert versions 1.0.0 through 2.0.0 utilize cryptographic algorithms that are not sufficiently robust, potentially enabling an attacker to decrypt sensitive data. Recommendations Update...

5.9CVSS5.3AI score0.00157EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/11/07 12:0 a.m.3 views

Lexmark Printers Disclosure of Information (CVE-2019-1559)

A vulnerability in the TLS protocol in Lexmark devices has been identified that can be exploited by a “Man In The Middle” attacker to decrypt data in the TLS stream. %NASLMINLEVEL 80900 C Tenable, Inc. include'compat.inc'; if description scriptid503882; scriptversion"1.3";...

5.9CVSS6.2AI score0.17139EPSS
Exploits0References2
EUVD
EUVD
added 2025/10/21 12:0 a.m.6 views

EUVD-2025-35218

The Reolink desktop application uses a hard-coded and predictable AES encryption key to encrypt user configuration files allowing attackers with local access to decrypt sensitive application data stored in %APPDATA%. A different vulnerability than CVE-2025-56802...

5.1CVSS6AI score0.00122EPSS
Exploits2References2
CVE
CVE
added 2025/10/21 12:0 a.m.13 views

CVE-2025-56802

The connected Red Hat and NVD entries confirm CVE-2025-56802 affects the Reolink desktop application and centers on a hard-coded and predictable AES encryption key used to encrypt user configuration files. This allows attackers with local access to decrypt sensitive data stored in %APPDATA%. The ...

5.1CVSS6.1AI score0.00122EPSS
Exploits2References2Affected Software1
RedhatCVE
RedhatCVE
added 2025/09/30 8:56 p.m.17 views

CVE-2025-34209

Vasion Print formerly PrinterLogic Virtual Appliance Host prior to 22.0.862 and Application prior to 20.0.2014 VA and SaaS deployments contain Docker images with the private GPG key and passphrase for the account no‑reply+virtual‑[email protected]. The key is stored in cleartext and the...

9.4CVSS6.8AI score0.00656EPSS
Exploits1References1
CNNVD
CNNVD
added 2025/09/26 12:0 a.m.30 views

Unitree多款产品 安全漏洞

Unitree Go2 is a robot dog, Unitree G1 is a humanoid robot, Unitree H1 is a humanoid robot, Unitree Go2 is a robot dog, Unitree G1 is a humanoid robot, Unitree H1 is a humanoid robot, Unitree H1 is a humanoid robot. A security vulnerability exists in several Unitree products that stems from the u...

4.7CVSS6.4AI score0.00177EPSS
Exploits0References3
Rows per page
Query Builder