CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5878 matches found

OSV•added 2020/11/30 4:15 p.m.•2 views

CVE-2020-4624

IBM Cloud Pak for Security 1.3.0.1 CP4S uses weaker than expected cryptographic algorithms during negotiation could allow an attacker to decrypt sensitive information...

5.3CVSS5.8AI score

Exploits0References2

CNNVD•added 2020/11/25 12:0 a.m.•3 views

IBM Cloud Pak for Security 加密问题漏洞

IBM Cloud Pak for Security is an integrated security tool that uses a unified interface to provide deep insight into threats in hybrid multi-cloud environments. A weak cryptographic algorithm vulnerability exists in IBM Cloud Pak for Security 1.3.0.1. The vulnerability stems from the product usin...

5.3CVSS5.8AI score0.00076EPSS

Exploits0References4

Pen Test Partners Blog•added 2020/11/24 9:35 a.m.•346 views

Understanding Binary and Data Representation with CyberChef

A significant part of reverse engineering and attacking devices relies on viewing and recognising data in various forms and working out how to decode it. We typically use Linux tools and scripts to do this, but you can make the first few steps using a really neat online tool called CyberChef. Wha...

6.5AI score

Exploits0

Mageia•added 2020/11/23 7:51 p.m.•33 views

Updated python-cryptography packages fix security vulnerability

Hubert Kario discovered that python-cryptography incorrectly handled certain decryption. An attacker could possibly use this issue to expose sensitive information CVE-2020-25659...

5.9CVSS1.3AI score0.0076EPSS

Exploits0References2

OSV•added 2020/11/20 2:15 p.m.•2 views

CVE-2020-4937

IBM Sterling B2B Integrator Standard Edition 5.2.0.0 through 6.0.3.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 191814...

7.5CVSS6.5AI score

Exploits0References2

UbuntuCve•added 2020/11/19 8:15 p.m.•27 views

CVE-2020-28924

An issue was discovered in Rclone before 1.53.3. Due to the use of a weak random number generator, the password generator has been producing weak passwords with much less entropy than advertised. The suggested passwords depend deterministically on the time the second rclone was started. This limi...

7.5CVSS6.9AI score0.00352EPSS

Exploits1References2

Debian CVE•added 2020/11/19 7:32 p.m.•24 views

CVE-2020-28924

7.5CVSS7.5AI score0.00352EPSS

Exploits1

CNNVD•added 2020/11/19 12:0 a.m.•3 views

IBM Sterling B2B Integrator 加密问题漏洞

IBM Sterling B2B Integrator is a transaction engine, a set of components that run the processes you define and manage based on your business needs. A weak cryptographic algorithm vulnerability exists in IBM Sterling B2B Integrator Standard Edition 5.2.0.0 - 6.0.3.2. An attacker could exploit this...

7.5CVSS6.6AI score0.00112EPSS

Exploits0References4

OSV•added 2020/11/16 1:15 a.m.•17 views

CVE-2020-8152

Insufficient protection of the server-side encryption keys in Nextcloud Server 19.0.1 allowed an attacker to replace the public key to decrypt them later on...

4.4CVSS7AI score

Exploits0References3

Cvelist•added 2020/11/16 12:36 a.m.•18 views

CVE-2020-8152

Insufficient protection of the server-side encryption keys in Nextcloud Server 19.0.1 allowed an attacker to replace the public key to decrypt them later on...

5.6AI score0.00038EPSS

Exploits2References3

OSV•added 2020/11/12 2:15 p.m.•29 views

CVE-2020-25658