Lucene search
K

5472 matches found

ICS
ICS
added 2021/01/05 12:0 a.m.203 views

GE Reason RT43X Clocks

1. EXECUTIVE SUMMARY CVSS v3 9.8 ATTENTION: Exploitable remotely/low skill level to exploit Vendor: GE Equipment: Reason RT43X Clocks Vulnerabilities: Code Injection, Use of Hard-coded Cryptographic Key 2. RISK EVALUATION Successful exploitation of these vulnerabilities could allow an...

9.8CVSS7.8AI score0.02982EPSS
Exploits0References5
Akamai Blog
Akamai Blog
added 2020/12/28 2:0 p.m.60 views

Smart DNS for the New Network Edge: Emerging Requirements for DNS Encryption

This blog post -- the fourth in a series -- will discuss how smart DNS resolvers can enhance ongoing ISP and MNO network transformation efforts, such as the transition to 5G, better integration of Wi-Fi, and new network designs that optimize the edge to improve service delivery and network...

0.3AI score
Exploits0
Hacker One
Hacker One
added 2020/12/27 8:52 a.m.48 views

h1-ctf: [ Hacky Holidays CTF ] Completely taken down the Grinch Networks

Day 1 - Robot flag We're presented with sample ui page without any function. So I guessed content discovery is the best way to find flag. And robots.txt came to my mind and found the flag. https://hackyholidays.h1ctf.com/robots.txt Response User-agent: Disallow: /s3cr3t-ar3a Flag:...

6.8AI score
Exploits0
CNVD
CNVD
added 2020/12/22 12:0 a.m.1 views

Dell BSAFE Micro Edition Suite Unchecked Return Value Vulnerability

The Dell BSAFE Micro Edition Suite is a Dell development kit that provides encryption, certificate, and transport layer security for c/c++ applications, devices, and systems. A security vulnerability exists in the Dell BSAFE Micro Edition Suite that stems from susceptibility to an unchecked retur...

5.8CVSS9.2AI score0.01148EPSS
Exploits0References1
OSV
OSV
added 2020/12/16 4:15 p.m.4 views

CVE-2020-5359

Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to modify and corrupt the encrypted data...

5.8CVSS6.7AI score0.01148EPSS
Exploits0References2
NVD
NVD
added 2020/12/16 4:15 p.m.17 views

CVE-2019-14477

AdRem NetCrunch 10.6.0.4587 has Improper Credential Storage since the internal user database is readable by low-privileged users and passwords in the database are weakly encoded or encrypted...

5.5CVSS5.6AI score0.00278EPSS
Exploits0References2
Prion
Prion
added 2020/12/16 4:15 p.m.16 views

Code injection

Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to modify and corrupt the encrypted data...

5CVSS6.5AI score0.01148EPSS
Exploits0References2Affected Software3
Cvelist
Cvelist
added 2020/12/16 3:50 p.m.16 views

CVE-2020-5359

Dell BSAFE Micro Edition Suite, versions prior to 4.5, are vulnerable to an Unchecked Return Value Vulnerability. An unauthenticated remote attacker could potentially exploit this vulnerability to modify and corrupt the encrypted data...

5.8CVSS6.6AI score0.01148EPSS
Exploits0References2
CNNVD
CNNVD
added 2020/12/16 12:0 a.m.8 views

Dell BSAFE Micro Edition Suite 安全漏洞

The Dell BSAFE Micro Edition Suite is a Dell development kit that provides encryption, certificate, and transport layer security for c/c++ applications, devices, and systems. A security vulnerability exists in the Dell BSAFE Micro Edition Suite that stems from susceptibility to an unchecked retur...

5.8CVSS6.8AI score0.01148EPSS
Exploits0References4
HackRead
HackRead
added 2020/12/10 2:59 p.m.78 views

German court forcing Tutanota to let authorities read emails in plain text

By Sudais Asif As of 2017, Tutanota had over 2 million users across the globe. Find out why Germany wants to backdoor the encrypted email service provider. This is a post from HackRead.com Read the original post: German court forcing Tutanota to let authorities read emails in plain text...

3.7AI score
Exploits0
Prion
Prion
added 2020/12/02 1:15 a.m.21 views

Stack overflow

Valve's Game Networking Sockets prior to version v1.2.0 improperly handles long encrypted messages in function AESGCMDecryptContext::Decrypt when compiled using libsodium, leading to a Stack-Based Buffer Overflow and resulting in a memory corruption and possibly even a remote code execution...

7.5CVSS9.9AI score0.031EPSS
Exploits1References2Affected Software1
Wired Threat Level
Wired Threat Level
added 2020/11/29 12:0 p.m.41 views

What Is the Signal Encryption Protocol?

As the Signal protocol becomes the industry standard, it's worth understanding what sets it apart from other forms of end-to-end encrypted messaging...

2.8AI score
Exploits0
NVD
NVD
added 2020/11/25 3:15 a.m.20 views

CVE-2020-29072

A Cross-Site Script Inclusion vulnerability was found on LiquidFiles before 3.3.19. This client-side attack requires user interaction opening a link and successful exploitation could lead to encrypted e-mail content leakage via messages/sent?format=js and popup?format=js...

6.1CVSS6.1AI score0.007EPSS
Exploits1References2
CVE
CVE
added 2020/11/25 2:47 a.m.76 views

CVE-2020-29072

LiquidFiles versions prior to 3.3.19 have a Cross-Site Script Inclusion vulnerability in client-side code. Exploitation requires user interaction (opening a link) and could lead to leakage of encrypted e-mail content via messages/sent?format=js and popup?format=js. Affected product: LiquidFiles p...

6.1CVSS6AI score0.007EPSS
Exploits1References2Affected Software1
Cvelist
Cvelist
added 2020/11/25 2:47 a.m.20 views

CVE-2020-29072

A Cross-Site Script Inclusion vulnerability was found on LiquidFiles before 3.3.19. This client-side attack requires user interaction opening a link and successful exploitation could lead to encrypted e-mail content leakage via messages/sent?format=js and popup?format=js...

6.1AI score0.007EPSS
Exploits1References2
NVD
NVD
added 2020/11/24 9:15 p.m.19 views

CVE-2020-29063

An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. ...

7.5CVSS7.6AI score0.00533EPSS
Exploits1References1
ThreatPost
ThreatPost
added 2020/11/24 9:2 p.m.30 views

Post Breach, Peatix Data Reportedly Found on Instagram, Telegram

Event-discovery application Peatix has disclosed a data breach, after ads for stolen user-account information were reportedly being circulated on Instagram and Telegram. In a data breach notice to affected users, Peatix said it learned on Nov. 9 that user account data had been improperly accessed...

Exploits0References7
Cvelist
Cvelist
added 2020/11/24 8:58 p.m.25 views

CVE-2020-29063

An issue was discovered on CDATA 72408A, 9008A, 9016A, 92408A, 92416A, 9288, 97016, 97024P, 97028P, 97042P, 97084P, 97168P, FD1002S, FD1104, FD1104B, FD1104S, FD1104SN, FD1108S, FD1204S-R2, FD1204SN, FD1204SN-R2, FD1208S-R2, FD1216S-R1, FD1608GS, FD1608SN, FD1616GS, FD1616SN, and FD8000 devices. ...

7.6AI score0.00533EPSS
Exploits1References1
CNNVD
CNNVD
added 2020/11/24 12:0 a.m.8 views

Liquidfiles 跨站脚本漏洞

LiquidFiles is a virtual appliance that helps companies and organizations send, receive and share large files quickly and securely. A cross-site scripting vulnerability exists in the "Share" feature of LiquidFiles prior to version 3.3.19, which can be exploited by an attacker to execute commands ...

9CVSS7.1AI score0.01639EPSS
Exploits1References3
CNNVD
CNNVD
added 2020/11/24 12:0 a.m.5 views

Liquidfiles 跨站脚本漏洞

LiquidFiles is a virtual appliance that helps companies and organizations send, receive and share large files quickly and securely. A cross-site scripting inclusion vulnerability exists in versions prior to LiquidFiles 3.3.19, which can be exploited by an attacker to obtain encrypted email conten...

6.1CVSS6.2AI score0.007EPSS
Exploits1References3
Rows per page
Query Builder