Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

5806 matches found

NVD
NVDadded 2025/07/08 3:15 p.m.3 views

CVE-2025-6996

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated attacker to decrypt other users’ passwords...

8.4CVSS0.00094EPSS
Exploits0References1
OSV
OSVadded 2025/07/08 3:15 p.m.2 views

CVE-2025-6996

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated attacker to decrypt other users’ passwords...

8.4CVSS5.8AI score0.00094EPSS
Exploits0References1
Vulnrichment
Vulnrichmentadded 2025/07/08 2:51 p.m.3 views

CVE-2025-6996 Improper Encryption in Ivanti Endpoint Manager

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated attacker to decrypt other users’ passwords...

8.4CVSS6.7AI score0.00094EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/07/08 2:51 p.m.3 views

CVE-2025-6996 Improper Encryption in Ivanti Endpoint Manager

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated attacker to decrypt other users’ passwords...

8.4CVSS0.00094EPSS
Exploits0References1
CVE
CVEadded 2025/07/08 2:51 p.m.18 views

CVE-2025-6996

CVE-2025-6996 concerns Ivanti Endpoint Manager. The issue is an improper use of encryption in the agent that, on affected versions prior to 2024 SU3 and prior to 2022 SU8 Security Update 1, could let a local authenticated attacker decrypt other users’ passwords. The vulnerability affects Ivanti E...

8.4CVSS6.7AI score0.00094EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichmentadded 2025/07/08 2:45 p.m.2 views

CVE-2025-6995 Improper Encryption in Ivanti Endpoint Manager

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated attacker to decrypt other users’ passwords...

8.4CVSS6.7AI score0.00094EPSS
Exploits0References1
Cvelist
Cvelistadded 2025/07/08 2:45 p.m.4 views

CVE-2025-6995 Improper Encryption in Ivanti Endpoint Manager

Improper use of encryption in the agent of Ivanti Endpoint Manager before version 2024 SU3 and 2022 SU8 Security Update 1 allows a local authenticated attacker to decrypt other users’ passwords...

8.4CVSS0.00094EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2025/07/08 12:0 a.m.2 views

PT-2025-28466 · Ivanti · Ivanti Endpoint Manager

Name of the Vulnerable Software and Affected Versions: Ivanti Endpoint Manager versions prior to 2024 SU3 Ivanti Endpoint Manager versions prior to 2022 SU8 Security Update 1 Description: The issue is related to the improper use of encryption in the agent of Ivanti Endpoint Manager. This allows a...

8.4CVSS5.9AI score0.00094EPSS
Exploits0References4
CNNVD
CNNVDadded 2025/07/08 12:0 a.m.1 views

Ivanti Endpoint Manager 安全漏洞

Ivanti Endpoint Manager is a comprehensive endpoint management solution developed by Ivanti to manage all endpoint devices in an enterprise network. Ivanti Endpoint Manager suffers from a cryptographic misuse vulnerability that stems from an incorrect cryptographic implementation, which can be...

8.4CVSS6.5AI score0.00094EPSS
Exploits0References2
Positive Technologies
Positive Technologiesadded 2025/07/08 12:0 a.m.3 views

PT-2025-28467 · Ivanti · Ivanti Endpoint Manager

Name of the Vulnerable Software and Affected Versions: Ivanti Endpoint Manager versions prior to 2024 SU3 Ivanti Endpoint Manager versions prior to 2022 SU8 Security Update 1 Description: The issue is related to the improper use of encryption in the agent of Ivanti Endpoint Manager. This allows a...

8.4CVSS5.9AI score0.00094EPSS
Exploits0References4
RedhatCVE
RedhatCVEadded 2025/07/05 5:19 p.m.5 views

CVE-2025-6071

Use of Hard-coded Cryptographic Key vulnerability in ABB RMC-100, ABB RMC-100 LITE. An attacker can gain access to salted information to decrypt MQTT information. This issue affects RMC-100: from 2105457-043 through 2105457-045; RMC-100 LITE: from 2106229-015 through 2106229-016...

6.3CVSS6.3AI score0.0023EPSS
Exploits0References1
NVD
NVDadded 2025/07/03 5:15 p.m.2 views

CVE-2025-6071

Use of Hard-coded Cryptographic Key vulnerability in ABB RMC-100, ABB RMC-100 LITE. An attacker can gain access to salted information to decrypt MQTT information. This issue affects RMC-100: from 2105457-043 through 2105457-045; RMC-100 LITE: from 2106229-015 through 2106229-016...

6.3CVSS0.0023EPSS
Exploits0References1
CNNVD
CNNVDadded 2025/07/03 12:0 a.m.1 views

ABB RMC-100 安全漏洞

The ABB RMC-100 is a remote modular controller from ABB Switzerland. Capable of managing automation, liquid and gas measurements, asset data centralization for large production and transmission facilities. A security vulnerability exists in the ABB RMC-100 that stems from the use of hard-coded...

6.3CVSS6.5AI score0.0023EPSS
Exploits0References1
NVD
NVDadded 2025/07/02 8:15 p.m.4 views

CVE-2025-34091

Rejected reason: Neither filed by Chrome nor a valid security vulnerability...

Exploits0
IBM Security Bulletins
IBM Security Bulletinsadded 2025/07/01 10:2 a.m.8 views

Security Bulletin: Cryptography expose cryptographic primitives and recipes

Summary cryptography is a package designed to expose cryptographic primitives and recipes to Python developers. Calling loadpempkcs7certificates or loadderpkcs7certificates could lead to a NULL-pointer dereference and segfault. Exploitation of this vulnerability poses a serious risk of Denial of...

7.5CVSS6.2AI score0.01255EPSS
Exploits1Affected Software1
RedhatCVE
RedhatCVEadded 2025/07/01 12:22 a.m.4 views

CVE-2015-20112

RLPx 5 has two CTR streams based on the same key, IV, and nonce. This can facilitate decryption on a private network...

3.4CVSS6.5AI score0.00054EPSS
Exploits0References1
NVD
NVDadded 2025/06/29 9:15 p.m.3 views

CVE-2015-20112

RLPx 5 has two CTR streams based on the same key, IV, and nonce. This can facilitate decryption on a private network...

3.4CVSS0.00054EPSS
Exploits0References5
Snyk
Snykadded 2025/06/29 8:45 p.m.2 views

Missing Cryptographic Step

Overview Affected versions of this package are vulnerable to Missing Cryptographic Step via the RLPx process. An attacker can potentially access confidential information by exploiting the use of two CTR streams that share the same key, IV, and nonce, which may allow decryption of network traffic...

3.4CVSS6.7AI score0.00054EPSS
Exploits0References2
Vulnrichment
Vulnrichmentadded 2025/06/29 12:0 a.m.2 views

CVE-2015-20112

RLPx 5 has two CTR streams based on the same key, IV, and nonce. This can facilitate decryption on a private network...

3.4CVSS7.1AI score0.00054EPSS
Exploits0References5
Cvelist
Cvelistadded 2025/06/29 12:0 a.m.6 views

CVE-2015-20112

RLPx 5 has two CTR streams based on the same key, IV, and nonce. This can facilitate decryption on a private network...

3.4CVSS0.00054EPSS
Exploits0References5
Rows per page
Query Builder