Lucene search
K

217 matches found

CVE
CVE
added 2026/03/04 8:47 a.m.15 views

CVE-2026-27444

SEPPmail Secure Email Gateway is affected prior to version 15.0.1 due to incorrect parsing of email addresses in headers, leading to an interpretation conflict with other mail infrastructure. This can enable an attacker to fake the email source or decrypt it. The known remediation is upgrading to...

7.8CVSS5.9AI score0.00213EPSS
Exploits0References1Affected Software1
ATTACKERKB
ATTACKERKB
added 2026/03/04 8:47 a.m.4 views

CVE-2026-27444

SEPPmail Secure Email Gateway before version 15.0.1 incorrectly interprets email addresses in the email headers, causing an interpretation conflict with other mail infrastructure that allows an attacker to fake the source of the email or decrypt it...

7.8CVSS5.9AI score0.00213EPSS
Exploits0References2
Cvelist
Cvelist
added 2026/03/04 8:47 a.m.29 views

CVE-2026-27444 Header Email Address Parsing

SEPPmail Secure Email Gateway before version 15.0.1 incorrectly interprets email addresses in the email headers, causing an interpretation conflict with other mail infrastructure that allows an attacker to fake the source of the email or decrypt it...

7.8CVSS0.00213EPSS
Exploits0References1
NVD
NVD
added 2026/03/03 9:15 p.m.6 views

CVE-2025-14480

IBM Aspera faspio Gateway 1.3.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

7.5CVSS0.00167EPSS
Exploits0References1
CVE
CVE
added 2026/03/03 8:41 p.m.13 views

CVE-2025-14480

CVE-2025-14480 affects IBM Aspera faspio Gateway 1.3.6. The Red Hat/NVD entries and IBM security bulletin describe use of weaker than expected cryptographic algorithms (CWE-327), which could allow an attacker to decrypt highly sensitive information. The vulnerability is associated with 1.3.6 and ...

7.5CVSS5.9AI score0.00167EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/03 8:41 p.m.4 views

CVE-2025-14480 IBM Aspera faspio Gateway 1.3.7 has addressed a vulnerability affected by weak cryptographic algorithms

IBM Aspera faspio Gateway 1.3.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.1CVSS5.9AI score0.00167EPSS
Exploits0References1
EUVD
EUVD
added 2026/03/03 8:41 p.m.5 views

EUVD-2025-208263

IBM Aspera faspio Gateway 1.3.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.1CVSS5.9AI score0.00167EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/03/03 8:41 p.m.22 views

CVE-2025-14480 IBM Aspera faspio Gateway 1.3.7 has addressed a vulnerability affected by weak cryptographic algorithms

IBM Aspera faspio Gateway 1.3.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.1CVSS0.00167EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.8 views

PT-2026-22820

IBM Aspera faspio Gateway 1.3.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.1CVSS5.9AI score0.00167EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/03 12:0 a.m.6 views

IBM MQ Appliance 加密问题漏洞

IBM MQ Appliance is an IBM software that is pre-installed on specialized, secure hardware. Versions of IBM MQ Appliance 9.4 CD 9.4.4.1 and earlier have a security vulnerability due to the use of encryption algorithms that are weaker than expected. This vulnerability may allow attackers to decrypt...

5.9CVSS5.8AI score0.0017EPSS
Exploits0References2
CNVD
CNVD
added 2026/03/02 12:0 a.m.45 views

IBM Concert has a weak cryptographic algorithm vulnerability

IBM Concert is a generative artificial intelligence-driven automated application management and monitoring tool based on the watsonx platform, announced by International Business Machines IBM Corporation at the IBM Think conference in Boston, USA. A weak cryptographic algorithm vulnerability exis...

7.5CVSS7.2AI score0.00137EPSS
Exploits0References1
OSV
OSV
added 2026/02/24 4:24 p.m.8 views

CVE-2026-27519

Binardat 10G08-0800GSM network switch firmware version V300SP10260209 and prior use RC4 with a hard-coded key embedded in client-side JavaScript. Because the key is static and exposed, an attacker can decrypt protected values and defeat confidentiality protections...

7.5CVSS5.8AI score0.00186EPSS
Exploits0References2
CVE
CVE
added 2026/02/24 3:7 p.m.20 views

CVE-2026-27519

Binardat 10G08-0800GSM network switch firmware up to version V300SP10260209 uses RC4 with a hard-coded key embedded in client-side JavaScript. The static key enables an attacker to decrypt protected values, defeating confidentiality protections. Affected component: firmware (vulnerable RC4 implem...

8.7CVSS5.4AI score0.00186EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/19 1:28 a.m.19 views

CVE-2025-36379

IBM Security QRadar EDR 3.12 through 3.12.23 IBM Security ReaQta uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

7.5CVSS5.5AI score0.00143EPSS
Exploits0References1
OSV
OSV
added 2026/02/17 9:22 p.m.5 views

CVE-2025-36379

IBM Security QRadar EDR 3.12 through 3.12.23 IBM Security ReaQta uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

7.5CVSS5.8AI score0.00143EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/02/17 8:30 p.m.6 views

CVE-2025-36379 IBM Security QRadar EDR Software has multiple vulnerabilities

IBM Security QRadar EDR 3.12 through 3.12.23 IBM Security ReaQta uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.9CVSS5.5AI score0.00143EPSS
Exploits0References1
ATTACKERKB
ATTACKERKB
added 2026/02/17 6:55 p.m.3 views

CVE-2024-43178

IBM Concert 1.0.0 through 2.1.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information...

5.9CVSS5.5AI score0.00137EPSS
Exploits0References2Affected Software1
RedhatCVE
RedhatCVE
added 2026/02/10 7:33 a.m.7 views

CVE-2025-66598

A vulnerability has been found in FAST/TOOLS provided by Yokogawa Electric Corporation. This product supports old SSL/TLS versions, potentially allowing an attacker to decrypt communications with the web server. The affected products and versions are as follows: FAST/TOOLS Packages: RVSVRN, UNSVR...

7.5CVSS5.3AI score0.00152EPSS
Exploits0References1
EUVD
EUVD
added 2026/02/06 4:22 p.m.6 views

EUVD-2026-5665

Infor SyteLine ERP uses hard-coded static cryptographic keys to encrypt stored credentials, including user passwords, database connection strings, and API keys. The encryption keys are identical across all installations. An attacker with access to the application binary and database can decrypt a...

7.1CVSS5.4AI score0.00097EPSS
Exploits1References1
NVD
NVD
added 2026/02/05 5:16 p.m.8 views

CVE-2026-0714

A physical attack vulnerability exists in certain Moxa industrial computers using TPM-backed LUKS full-disk encryption on Moxa Industrial Linux 3, where the discrete TPM is connected to the CPU via an SPI bus. Exploitation requires invasive physical access, including opening the device and...

7CVSS0.00115EPSS
Exploits0References1
Rows per page
Query Builder