Lucene search
K

68 matches found

OSV
OSV
added 2021/04/15 7:3 p.m.10 views

MGASA-2021-0189 Updated thunderbird packages fix security vulnerabilities

An attacker may use Thunderbird's OpenPGP key refresh mechanism to poison an existing key CVE-2021-23991. A crafted OpenPGP key with an invalid user ID could be used to confuse the user CVE-2021-23992. Inability to send encrypted OpenPGP email after importing a crafted OpenPGP key CVE-2021-23993...

6.8CVSS5.5AI score0.01035EPSS
Exploits1References4
CNVD
CNVD
added 2021/03/03 12:0 a.m.10 views

OwnCloud Encryption Issues Vulnerabilities

OwnCloud OwnCloud is a personal cloud storage solution from OwnCloud Owncloud, an American company. An encryption issue vulnerability exists in OwnCloud. The vulnerability stems from a lock protection mechanism that can be bypassed by moving the system date/time to the past. No details of the...

6.1CVSS6.7AI score0.0026EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2020/11/02 12:0 a.m.26 views

Huawei EulerOS: Security Advisory for kernel (EulerOS-SA-2020-2311)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.8CVSS7.3AI score0.07693EPSS
Exploits9References2
OSV
OSV
added 2020/09/16 12:23 p.m.12 views

SUSE-SU-2020:2648-1 Security update for SUSE Manager 3.2

This update for SUSE Manager 3.2 fixes the following issues: salt-netapi-client: - Refresh authentication module list to newer Salt versions spacewalk-admin: - Use the Salt API in authenticated and encrypted form bsc1175884, CVE-2020-8028 spacewalk-java: - Use the Salt API in authenticated and...

9.3CVSS9.4AI score0.00403EPSS
Exploits1References3
OSV
OSV
added 2019/12/19 3:12 p.m.6 views

SUSE-SU-2019:3347-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Mozilla Firefox was updated to 68.3esr MFSA 2019-37 bsc1158328 Security issues fixed: - CVE-2019-17008: Fixed a use-after-free in worker destruction bmo1546331 - CVE-2019-13722: Fixed a stack corruption due to incorrect number of argument...

8.8CVSS8.7AI score0.02994EPSS
Exploits3References10
OSV
OSV
added 2019/12/18 5:17 p.m.6 views

SUSE-SU-2019:3337-1 Security update for MozillaFirefox

This update for MozillaFirefox fixes the following issues: Mozilla Firefox was updated to 68.3esr MFSA 2019-37 bsc1158328 Security issues fixed: - CVE-2019-17008: Fixed a use-after-free in worker destruction bmo1546331 - CVE-2019-13722: Fixed a stack corruption due to incorrect number of argument...

8.8CVSS8.7AI score0.02994EPSS
Exploits3References11
CNVD
CNVD
added 2019/07/02 12:0 a.m.4 views

Pulse Secure Pulse Connect Secure and Pulse Policy Secure Encryption Issue Vulnerabilities

Pulse Secure Pulse Connect Secure a.k.a. PCS, formerly known as Juniper Junos Pulse and Pulse Policy Secure are both products of Pulse Secure, Inc.Pulse Connect Secure is an SSL VPN solution. Pulse Connect Secure is an SSL VPN solution. Pulse Policy Secure is a network access control solution. An...

9.8CVSS6.4AI score0.0177EPSS
Exploits0References1
CNVD
CNVD
added 2019/06/12 12:0 a.m.2 views

Moxa AWK-3121 Encryption Issues Vulnerability

Moxa AWK-3121 is an industrial-grade wireless access point from Moxa Taiwan, China. An encryption issue vulnerability exists in Moxa AWK-3121 version 1.14. The vulnerability stems from the network system or product not properly using the relevant cryptographic algorithms, resulting in content not...

8.1CVSS6.9AI score0.00811EPSS
Exploits1References1
OSV
OSV
added 2018/12/21 5:47 p.m.9 views

SUSE-SU-2018:4235-1 Security update for MozillaFirefox, mozilla-nspr and mozilla-nss

This update for MozillaFirefox, mozilla-nss and mozilla-nspr fixes the following issues: Issues fixed in MozillaFirefox: - Update to Firefox ESR 60.4 bsc1119105 - CVE-2018-17466: Fixed a buffer overflow and out-of-bounds read in ANGLE library with TextureStorage11 - CVE-2018-18492: Fixed a...

9.8CVSS7.5AI score0.44398EPSS
Exploits1References14
Citrix
Citrix
added 2018/03/30 12:0 a.m.7 views

Bluefin (Ingenico) IPP320 failing to communicate with Sage Exchange Desktop via ICA Channel Serial COM Port

Serial COM port redirected device Bluefin Ingenico IPP320 with encryption, fails to complete the communication with the Sage Payment Solutions...

7.1AI score
Exploits0
ThreatPost
ThreatPost
added 2018/01/02 12:4 p.m.14 views

Forever 21 Says PoS Systems Exposed Customer Data for 8 Months

Fashion retailer Forever 21 confirmed a breach made public in November resulted in the theft of credit card data belonging to an undisclosed number of customers. The company had stated that a lack of encryption used on some of its point-of-sales payment terminals could have resulted in unauthoriz...

7.2AI score
Exploits0References6
OSV
OSV
added 2016/07/21 10:14 a.m.5 views

CVE-2016-3614

Unspecified vulnerability in Oracle MySQL 5.6.30 and earlier and 5.7.12 and earlier allows remote authenticated users to affect availability via vectors related to Server: Security: Encryption...

5.3CVSS6.8AI score
Exploits0References6
Citrix
Citrix
added 2016/05/26 12:0 a.m.8 views

Process Shows "Starting Application", Freezes When Launching Applications from Receiver for iOS or From Browser on iOS Devices

This article is intended for Citrix administrators and technical teams only. Non-admin users must contact their company’s Help Desk/IT support team and can refer to CTX297149 for more information. When trying to launch an application from and iOS device using the browser or the Citrix Receiver, t...

6.8AI score
Exploits0
Hacker One
Hacker One
added 2016/03/31 6:28 p.m.26 views

HackerOne: HackerOne Important Emails Notification are sent in clear-text

Our e-mail provider at the time had problems where some e-mails would not be sent out over TLS. Based on data from Google Postmaster Tools, we were seeing as high as 12% of our e-mail from our provider to Google mail servers not encrypted. We opened a case with them on March 31st, 2016, about thi...

1.4AI score
Exploits0
The Hacker News
The Hacker News
added 2011/08/12 4:27 p.m.3 views

$30 Child Toy is enough to hack FBI Radios

$30 Child Toy is enough to hack FBI Radios The portable radios used by many federal law enforcement agents have major security flaws that allowed researchers to intercept hundreds of hours of sensitive traffic sent without encryption over the past two years, according to a new study being release...

7AI score
Exploits0
securityvulns
securityvulns
added 2004/04/14 12:0 a.m.27 views

ServerAlive weak encryption

Passwords are stored in text file in base64 format...

1.8AI score
Exploits0References1Affected Software1
securityvulns
securityvulns
added 2003/11/05 12:0 a.m.29 views

[NEWS] Multiple Payload Handling Flaws in ISAKMPd

The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com - - promotion The SecuriTeam alerts list - Free, Accurate, Independent. Get your security news from a reliable source...

6.8AI score
Exploits0
securityvulns
securityvulns
added 2003/09/11 12:0 a.m.28 views

MSIE->NAFjpuInHistory

NAFjpuInHistory tested Browser Ver MS Internet Explorer: 6.0.2600.0000.xpclntqfe.021108-2107; Encryption: 128-bit; Patch:; Q810847; So, it's far from fully patched. it also works after applying the patch for "Using the backbutton in IE is dangerous" OS Ver: "Windows XP Cn ver" demo...

0.4AI score
Exploits0
securityvulns
securityvulns
added 2002/09/10 12:0 a.m.38 views

Strange Attractors and TCP/IP Sequence Number Analysis - One Year Later

Hello, Over a year ago, I published a paper that attempted to analyze the randomness of PRNGs used in TCP/IP stacks on several operating systems. The approach I've chosen resulted in detecting some non-trivial dependencies in several generators, and some amusing 3D pictures. The original RAZOR...

6.8AI score
Exploits0
NVD
NVD
added 2001/08/31 4:0 a.m.17 views

CVE-2001-0967

Knox Arkeia server 4.2, and possibly other versions, uses a constant salt when encrypting passwords using the crypt function, which makes it easier for an attacker to conduct brute force password guessing...

9.8CVSS9.6AI score0.00954EPSS
Exploits0References2
Rows per page
Query Builder