57 matches found
EUVD-2010-5179
Malware in sbrugna...
EUVD-2022-38790
Malicious code in bioql PyPI...
Broadcom Symantec PGP Encryption 安全漏洞
Broadcom Symantec PGP Encryption is a data encryption software from Broadcom Corporation USA. A security vulnerability exists in Broadcom Symantec PGP Encryption that stems from an improper assignment of privileges, which could result in elevated privileges...
CVE-2010-5220
Untrusted search path vulnerability in MEO Encryption Software 2.02 allows local users to gain privileges via a Trojan horse dwmapi.dll file in the current working directory, as demonstrated by a directory that contains a .meo or .cry file. NOTE: some of these details are obtained from third part...
File Upload Vulnerability in Tianrui Green Shield Approval System of Xiamen Tianrui Technology Co.
Tianrui Green Shield Approval System is a kind of encryption software integrated in OA system, which is mainly used to realize the automation and informatization of the approval process. A file upload vulnerability exists in the Tianrui Green Shield Approval System of Xiamen Tianrui Technology Co...
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2024-2425)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2024-2354)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
EulerOS 2.0 SP12 : openssl (EulerOS-SA-2024-2346)
According to the versions of the openssl packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in OpenSSL up to 1.1.1x/3.0.13/3.1.5/3.2.1/3.3.0 Network Encryption Software. It has been declared as very critical...
Huawei EulerOS: Security Advisory for openssl (EulerOS-SA-2024-2346)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
Use Of A Broken Or Risky Cryptographic Algorithm
asymmetricrypt/asymmetricrypt is vulnerable to Use Of A Broken Or Risky Cryptographic Algorithm. The vulnerability is due to insecure padding within PKCS v1.5, which allows an attacker to brute force the encrypted content...
CVE-2023-37907 Cryptomator's MSI installer allows local privilege escalation
Cryptomator is data encryption software for users who store their files in the cloud. Prior to version 1.9.2, the MSI installer provided on the homepage allows local privilege escalation LPE for low privileged users, if already installed. The problem occurs as the repair function of the MSI spawn...
Unauthorized Access Vulnerability in Isthmus Electronic Document Security Management System
Easetone electronic document security management system is an electronic document security encryption software. There is an unauthorized access vulnerability in Yisetong Electronic Document Security Management System, which can be exploited by attackers to obtain sensitive information...
Logical flaws in the electronic document security management system of Beijing Yisaitong Technology Development Co.
Electronic Document Security Management System is an electronic document security encryption software. There is a logic flaw vulnerability in the Electronic Document Security Management System of Beijing Yisetong Technology Development Co., Ltd. that can be exploited by attackers to obtain...
AttacheCase may insecurely load Dynamic Link Libraries
Overview AttacheCase may insecurely load Dynamic Link Libraries. AttacheCase is an open source file encryption software provided by HiBARA Software. AttacheCase contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Taizoh Tsukamoto of...
Security update for firejail (important)
openSUSE Security Update: Security update for firejail Announcement ID: openSUSE-SU-2021:0271-1 Rating: important References: 1181990 Cross-References: CVE-2020-17367 CVE-2020-17368 CVE-2021-26910 CVSS scores: CVE-2020-17367 NVD : 7.8 CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H CVE-2020-17368 NV...
PYSEC-2020-261
A weak robustness vulnerability exists in the AWS Encryption SDKs for Java, Python, C and Javalcript prior to versions 2.0.0. Due to the non-committing property of AES-GCM and other AEAD ciphers such as AES-GCM-SIV or XChaCha20Poly1305 used by the SDKs to encrypt messages, an attacker can craft a...
Insecure Access Controls
awsencryptionsdkcli does correctly enforce strict mode. The application operates in discovery mode even when strict mode is specified, allowing various operations within the package which would otherwise be restricted...
Cloud Secure Denial of Service Vulnerability
Cloud Secure is an encryption software specially made for cloud folder, support Google drive, one drive, Dropbox and Box, it can lock the cloud folder or file on your computer and encrypt the cloud folder and cloud file, if you don't have the permission and password, you can't do any operation on...
AttacheCase Arbitrary Code Execution Vulnerability (CNVD-2018-17324)
AttacheCase is a suite of file encryption software. An arbitrary code execution vulnerability exists in AttacheCase, which can be exploited by a remote, unauthenticated attacker to execute arbitrary scripts...
JVN#02037158: AttacheCase vulnerable to arbitrary script execution
AttacheCase is an open source file encryption software provided by HiBARA Software. If a setting file AtcCase.ini is specially crafted and it resides in the same folder where ATC file resides, it is leveraged to execute an arbitrary script when ATC file is decrypted. Impact A remote unauthenticat...