5472 matches found
CVE-2020-28896
Mutt before 2.0.2 and NeoMutt before 2020-11-20 did not ensure that $sslforcetls was processed if an IMAP server's initial server response was invalid. The connection was not properly closed, and the code could continue attempting to authenticate. This could result in authentication credentials...
Schneider Electric Modicon M221 Security Breach
The Schneider Electric Modicon M221 is a programmable logic controller from Schneider Electric, France. The Modicon M221 suffers from a security vulnerability that stems from a sensitive data vulnerability encryption gap that can be exploited by an attacker to find a password hash after capturing...
Unspecified Vulnerability in Aviatrix Controller
Aviatrix Controller is a centralized control panel for orchestrating and managing various network and connectivity solutions. A security vulnerability exists in Aviatrix Controller versions prior to R5.3.1151. The vulnerability stems from a weak key in an encrypted file containing credentials. No...
CVE-2020-26551
An issue was discovered in Aviatrix Controller before R5.3.1151. Encrypted key values are stored in a readable file...
CVE-2020-26551
An issue was discovered in Aviatrix Controller before R5.3.1151. Encrypted key values are stored in a readable file...
CVE-2020-26550
An issue was discovered in Aviatrix Controller before R5.3.1151. An encrypted file containing credentials to unrelated systems is protected by a three-character key...
Remote file inclusion
An issue was discovered in Aviatrix Controller before R5.3.1151. Encrypted key values are stored in a readable file...
CVE-2020-26551
An issue was discovered in Aviatrix Controller before R5.3.1151. Encrypted key values are stored in a readable file...
CVE-2020-26550
CVE-2020-26550 pertains to Aviatrix Controller prior to R5.3.1151, where an encrypted file containing credentials is protected by a three-character key. The root cause is a weak key in the encrypted file, which has implications for confidentiality (HIGH per CVSS3.1). The connected documents confi...
CVE-2020-26550
An issue was discovered in Aviatrix Controller before R5.3.1151. An encrypted file containing credentials to unrelated systems is protected by a three-character key...
Aviatrix Systems Controller 安全漏洞
Aviatrix Controller is a centralized control panel for orchestrating and managing various network and connectivity solutions. A security vulnerability exists in Aviatrix Controller versions prior to R5.3.1151. The vulnerability stems from a weak key in an encrypted file containing credentials. No...
Visualizing Network Traffic Data to Drive Action
Top 5 multi group queries for analyzing network sensor data We launched the Insight Network Sensor earlier this year and have since seen great adoption from both new and existing customers. The main use case behind this success is the need for network visibility. Customers want to know what is...
Nextcloud Server Encryption Vulnerability
Nextcloud is a set of client-server software for creating network hard disks.Nextcloud Server is the server. An encryption vulnerability exists in Nextcloud Server 19.0.1. An attacker could use this vulnerability to degrade the encryption scheme and compromise the integrity of encrypted files...
CVE-2020-8133
Nextcloud Server 19.0.1 vulnerability (CVE-2020-8133) arises from incorrect passphrase generation for the encrypted block, enabling an attacker to silently overwrite blocks within a file. Public sources (Nextcloud advisory NC-SA-2020-038) describe MAC-based encryption weaknesses that can be explo...
CVE-2020-8150
A cryptographic issue in Nextcloud Server 19.0.1 allowed an attacker to downgrade the encryption scheme and break the integrity of encrypted files...
MGASA-2020-0404 Updated mariadb packages fix security vulnerabilities
The latest release of mariadb fixes some undisclosed easily exploitable vulnerabilities. CVE-2020-14765, CVE-2020-14776, CVE-2020-14789 and CVE-2020-14812. Additionally some bugs are fixed: - Temporary tables can overwrite existing files MDEV-23569 - Crash on SELECT on a table with indexed virtua...
CVE-2020-8577
SANtricity OS Controller Software versions 11.50.1 and higher are susceptible to a vulnerability which could allow an attacker to discover sensitive information by intercepting its transmission within an https session...
WhatsApp Is Adding Disappearing Messages—With Some Limits
The popular encrypted messaging app now lets you automatically make chats vanish after a week, but look out for a few caveats...
Unspecified Vulnerability in Apple macOS Catalina (CNVD-2020-61028)
Apple macOS Catalina is a specialized operating system developed by Apple Inc. for Mac computers. Apple macOS Catalina suffers from a security vulnerability that stems from an issue when Siri suggests that a user access encrypted data, which could be inappropriately accessed. No details of the...
Apple macOS Mojave has an unspecified vulnerability (CNVD-2020-65929)
Apple macOS Mojave is a specialized operating system developed by Apple Inc. for Mac computers. A security vulnerability exists in Apple macOS Mojave versions prior to 10.14.4, which can be exploited by an attacker to intercept the contents of mime-encrypted emails...