Lucene search
+L

733 matches found

Fedora
Fedora
added 2025/02/08 2:18 a.m.12 views

[SECURITY] Fedora 41 Update: php-phpseclib-2.0.48-1.fc41

MIT-licensed pure-PHP implementations of an arbitrary-precision integer arithmetic library, fully PKCS1 v2.1 compliant RSA, DES, 3DES, RC4, Rijndael, AES, Blowfish, Twofish, SSH-1, SSH-2, SFTP, and X.509...

7.5CVSS7.3AI score0.00601EPSS
Exploits1
CNNVD
CNNVD
added 2025/01/20 12:0 a.m.6 views

easy-rsa 加密问题漏洞

easy-rsa is a simple shell-based CA utility from the OpenVPN open source. A security vulnerability exists in easy-rsa versions 3.0.5 through 3.1.7, which stems from the fact that when creating a password-protected CA private key using the easyrsa build-ca command, Easy-RSA incorrectly uses the...

5.3CVSS5.4AI score0.00081EPSS
Exploits0References2
RustSec
RustSec
added 2024/12/28 12:0 p.m.9 views

Use of insecure cryptographic algorithms

This crate uses a number of cryptographic algorithms that are no longer considered secure and it uses them in ways that do not guarantee the integrity of the encrypted data. MagicCrypt64 uses the insecure DES block cipher in CBC mode without authentication. This allows for practical brute force a...

7AI score
Exploits0
Schneier on Security
Schneier on Security
added 2024/11/08 10:4 p.m.7 views

Friday Squid Blogging: Squid-A-Rama in Des Moines

Squid-A-Rama will be in Des Moines at the end of the month. Visitors will be able to dissect squid, explore fascinating facts about the species, and witness a live squid release conducted by local divers. How are they doing a live squid release? Simple: this is Des Moines, Washington; not Des...

7AI score
Exploits0
Microsoft CVE
Microsoft CVE
added 2024/10/15 7:0 a.m.8 views

A heap-based buffer overflow vulnerability was found in Samba within the GSSAPI unwrap_des() and unwrap_des3() routines of Heimdal. The DES and Triple-DES decryption routines in the Heimdal GSSAPI library allow a length-limited write buffer overflow on malloc() allocated memory when presented with a maliciously small packet. This flaw allows a remote user to send specially crafted malicious data to the application possibly resulting in a denial of service (DoS) attack.

...

6.5CVSS6.6AI score0.0369EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2024/09/10 12:0 a.m.18 views

NewStart CGSL MAIN 6.02 : libssh Multiple Vulnerabilities (NS-SA-2024-0052)

The remote NewStart CGSL host, running version MAIN 6.02, has libssh packages installed that are affected by multiple vulnerabilities: - The RANDbytes function in libssh before 0.6.3, when forking is enabled, does not properly reset the state of the OpenSSL pseudo-random number generator PRNG,...

9.3CVSS7.5AI score0.91789EPSS
Exploits13References13
OSV
OSV
added 2024/06/28 3:28 p.m.12 views

GO-2024-2441 The DES/3DES cipher was used as part of the TLS protocol by installation tools in github.com/karmada-io/karmada

The DES/3DES cipher was used as part of the TLS protocol by installation tools in github.com/karmada-io/karmada...

7.1AI score
Exploits0References5
OSV
OSV
added 2024/06/25 12:39 p.m.7 views

MAL-2024-2196 Malicious code in down_load_ebook_lionheart_im_dienste_des_lowen_by_ben_kane_dietmar_schmidt_hu2ti (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
OSSF Malicious Packages
OSSF Malicious Packages
added 2024/06/25 12:38 p.m.3 views

Malicious code in down_load_ebook_das_spiel_des_lebens_und_wie_man_es_spielt_by_florence_scovel_shinn_katrine_hutterer_0k3sy (npm)

--- -= Per source details. Do not edit below this line.=-...

7AI score
Exploits0
OSV
OSV
added 2024/06/25 12:38 p.m.6 views

MAL-2024-2170 Malicious code in down_load_ebook_das_spiel_des_lebens_und_wie_man_es_spielt_by_florence_scovel_shinn_katrine_hutterer_0k3sy (npm)

--- -= Per source details. Do not edit below this line.=-...

7.1AI score
Exploits0
Positive Technologies
Positive Technologies
added 2024/05/18 12:0 a.m.4 views

PT-2024-10335 · Openssl +2 · Openssl +2

Name of the Vulnerable Software and Affected Versions: Easy-RSA versions 3.0.5 through 3.1.7 Description: The issue is related to a weak encryption algorithm used in Easy-RSA, specifically the cipher:des-ede3-cbc algorithm, which allows a local attacker to more easily bruteforce the private CA ke...

5.3CVSS6.5AI score0.00081EPSS
Exploits0References15
Openbugbounty
Openbugbounty
added 2024/04/11 10:16 a.m.6 views

comm-des-entrepreneurs.fr Cross Site Scripting vulnerability OBB-3915469

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/04/08 7:32 a.m.10 views

nuitdesetudiantsdumonde.org Cross Site Scripting vulnerability OBB-3908020

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/04/06 5:45 p.m.12 views

la-danse-des-casseroles.com Cross Site Scripting vulnerability OBB-3907441

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/02/25 12:32 p.m.6 views

saint-andre-des-eaux.fr Cross Site Scripting vulnerability OBB-3859058

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
OSV
OSV
added 2024/01/29 9:30 p.m.13 views

GHSA-7XM8-WJQ7-88R5 DeviceFarmer stf uses DES-ECB

DeviceFarmer stf v3.6.6 suffers from Use of a Broken or Risky Cryptographic Algorithm...

9.1CVSS9.3AI score0.00376EPSS
Exploits0References5
Openbugbounty
Openbugbounty
added 2024/01/18 11:3 p.m.7 views

la-rose-des-vents.com Cross Site Scripting vulnerability OBB-3838136

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/01/11 1:12 p.m.4 views

medecine-des-arts.com Cross Site Scripting vulnerability OBB-3831936

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

6.2AI score
Exploits0
Openbugbounty
Openbugbounty
added 2024/01/10 6:57 p.m.13 views

syndicat-des-taxis-marseillais.fr Improper Access Control vulnerability OBB-3831581

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Openbugbounty
Openbugbounty
added 2023/12/28 5:57 p.m.4 views

camping-fleurs-des-champs.fr Improper Access Control vulnerability OBB-3824269

Following the coordinated and responsible vulnerability disclosure guidelines of the ISO 29147 standard, Open Bug Bounty has: a. verified the vulnerability and confirmed its existence; b. notified the website operator about its existence. Technical details of the vulnerability are currently hidde...

7AI score
Exploits0
Rows per page
Query Builder