Lucene search
K

5 matches found

Positive Technologies
Positive Technologies
added 2026/03/27 12:0 a.m.12 views

PT-2026-28262

Ubiquiti UniFi Network Controller prior to 5.10.12 excluding 5.6.42, UAP FW prior to 4.0.6, UAP-AC, UAP-AC v2, and UAP-AC Outdoor FW prior to 3.8.17, USW FW prior to 4.0.6, USG FW prior to 4.4.34 uses AES-CBC encryption for device-to-controller communication, which contains cryptographic weakness...

9CVSS5.8AI score0.0008EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.9 views

EUVD-2024-34456

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00383EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 2:53 a.m.10 views

CVE-2023-0971

A logic error in SiLabs Z/IP Gateway SDK 7.18.02 and earlier allows authentication to be bypassed, remote administration of Z-Wave controllers, and S0/S2 encryption keys to be recovered...

9.6CVSS7.1AI score0.0025EPSS
Exploits0References1
Prion
Prion
added 2022/03/10 9:15 a.m.18 views

Authentication flaw

Apache Spark supports end-to-end encryption of RPC connections via "spark.authenticate" and "spark.network.crypto.enabled". In versions 3.1.2 and earlier, it uses a bespoke mutual authentication protocol that allows for full encryption key recovery. After an initial interactive attack, this would...

5CVSS8.2AI score0.01817EPSS
Exploits0References2Affected Software2
UbuntuCve
UbuntuCve
added 2019/09/10 5:15 p.m.38 views

CVE-2019-1563

In situations where an attacker receives automated notification of the success or failure of a decryption attempt an attacker, after sending a very large number of messages to be decrypted, can recover a CMS/PKCS7 transported encryption key or decrypt any RSA encrypted message that was encrypted...

4.3CVSS6.7AI score0.03838EPSS
Exploits0References5
Rows per page
Query Builder