Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Positive Technologies
Positive Technologiesadded 2026/04/17 12:0 a.m.4 views

PT-2026-33487

Name of the Vulnerable Software and Affected Versions xrdp versions prior to 0.10.6 Description xrdp fails to implement verification for the Message Authentication Code MAC signature of encrypted RDP packets when the Classic RDP Security layer is used. Although signatures are generated by the...

9.7CVSS5.1AI score0.00048EPSS
Exploits0References20
NVD
NVDadded 2026/03/13 7:54 p.m.0 views

CVE-2026-32320

Ella Core is a 5G core designed for private networks. Prior to 1.5.1, Ella Core panics when processing a PathSwitchRequest containing UE Security Capabilities with zero-length NR encryption or integrity protection algorithm bitstrings, resulting in a denial of service. An attacker able to send...

7.5CVSS0.00059EPSS
Exploits0References1
EUVD
EUVDadded 2025/11/12 9:32 p.m.1 views

EUVD-2025-150399

DuckDB is a SQL database management system. DuckDB implemented block-based encryption of DB on the filesystem starting with DuckDB 1.4.0. There are a few issues related to this implementation. The DuckDB can fall back to an insecure random number generator pcg32 to generate cryptographic keys or...

6.9CVSS6.9AI score0.00016EPSS
Exploits0References4
Positive Technologies
Positive Technologiesadded 2025/05/01 12:0 a.m.3 views

PT-2025-18669 · Gotenna · Gotenna

Name of the Vulnerable Software and Affected Versions: goTenna v1 with application 5.5.3 and firmware 0.25.5 Description: The issue concerns the use of a custom encryption implementation in the application without additional integrity checking mechanisms. This makes messages vulnerable to an...

6.5CVSS6.1AI score0.00025EPSS
Exploits0References7
Positive Technologies
Positive Technologiesadded 2023/07/05 12:0 a.m.2 views

PT-2023-24822 · American Megatrends International · Ami Spx

Name of the Vulnerable Software and Affected Versions: AMI SPx affected versions not specified Description: The issue is related to inadequate encryption strength by hash-based message authentication code HMAC in the BMC. A successful exploit may lead to a loss of confidentiality, integrity, and...

8.8CVSS8.6AI score0.00154EPSS
Exploits0References4
RedHat Linux
RedHat Linuxadded 2022/05/05 7:56 a.m.3 views

ceph: Ceph volume does not honour osd_dmcrypt_key_size

A key length flaw was found in Red Hat Ceph Storage. An attacker can exploit the fact that the key length is incorrectly passed in an encryption algorithm to create a non random key, which is weaker and can be exploited for loss of confidentiality and integrity on encrypted disks...

6.5CVSS5.8AI score0.00275EPSS
Exploits0References4
OSV
OSVadded 2016/01/21 3:2 a.m.6 views

CVE-2016-0606

Unspecified vulnerability in Oracle MySQL 5.5.46 and earlier, 5.6.27 and earlier, and 5.7.9 and MariaDB before 5.5.47, 10.0.x before 10.0.23, and 10.1.x before 10.1.10 allows remote authenticated users to affect integrity via unknown vectors related to encryption...

5.2AI score
Exploits0References21
Rows per page
Query Builder