Lucene search
+L

273 matches found

CNNVD
CNNVD
added 2021/12/10 12:0 a.m.6 views

IBM Spectrum Copy Data Management 加密问题漏洞

IBM Spectrum Copy Data Management, an IBM company that modernizes, simplifies and automates data center copy management processes, is vulnerable to an encryption issue that stems from the fact that IBM Spectrum Copy Data Management uses a weaker-than-expected encryption algorithm, which could be...

7.5CVSS5.6AI score0.00665EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/12/10 12:0 a.m.5 views

IBM Spectrum Copy Data Management加密问题漏洞

IBM Spectrum Copy Data Management, an IBM company that modernizes, streamlines and automates data center copy management processes, has a security vulnerability that stems from the use of a weaker-than-expected encryption algorithm, which could be exploited by an attacker to The vulnerability ste...

7.5CVSS5.6AI score0.00665EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/11/30 12:0 a.m.4 views

IBM QRadar SIEM加密问题漏洞

IBM QRadar SIEM is a U.S.-based solution from IBM that leverages security intelligence to protect assets and information from advanced threats. The solution provides oversight of the entire scope of the IT architecture and generates detailed reports on data access and user activity. IBM QRadar ha...

7.5CVSS5.6AI score0.00665EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/11/12 12:0 a.m.6 views

IBM Tivoli Key Lifecycle Manager 加密问题漏洞

IBM Tivoli Key Lifecycle Manager TKLM is a set of key lifecycle management software from IBM Corporation. The software provides key storage, key maintenance, and key lifecycle management for storage devices.A security vulnerability exists in IBM Tivoli Key Lifecycle Manager, which stems from the...

7.5CVSS5.6AI score0.00876EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/10/27 12:0 a.m.3 views

Cisco Firepower Management Center 安全漏洞

Cisco Firepower Management Center FMC is the next generation firewall management center software from Cisco. Cisco Firepower Management Center has security vulnerabilities that stem from improper encryption of sensitive information stored in the GUI configuration manager. An attacker could exploi...

4.3CVSS5.5AI score0.00271EPSS
Exploits0References4
OSV
OSV
added 2021/10/22 12:15 p.m.4 views

CVE-2021-38461

The affected product uses a hard-coded blowfish key for encryption/decryption processes. The key can be easily extracted from binaries...

8.2CVSS7.2AI score0.00515EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/10/21 12:0 a.m.6 views

Hcl Technologies Hcl Traveler Companion 加密问题漏洞

Hcl Technologies Hcl Traveler Companion is an ios Iphone and Ipad application from Hcl Technologies India. It is used to read encrypted Hcl Notes emails on Apple devices. HCL Traveler Companion suffers from an encryption issue vulnerability that stems from the software's susceptibility to an iOS...

3.9CVSS5.1AI score0.00226EPSS
Exploits0References3
Cvelist
Cvelist
added 2021/10/19 12:10 p.m.22 views

CVE-2021-38464 InHand Networks IR615 Router

InHand Networks IR615 Router's Versions 2.3.0.r4724 and 2.3.0.r4870 have inadequate encryption strength, which may allow an attacker to intercept the communication and steal sensitive information or hijack the session...

6.4CVSS7.5AI score0.00313EPSS
Exploits0References1
CNNVD
CNNVD
added 2021/09/30 12:0 a.m.4 views

IBM Cloud Pak for Security 加密问题漏洞

IBM Cloud Pak for Security CP4S is an open security platform from IBM that connects to your existing data sources, generates deeper insights, and enables you to act faster with automation. IBM Cloud Pak for Security CP4S suffers from an encryption issue vulnerability in versions 1.7.0.0, 1.7.1.0,...

7.5CVSS6.7AI score0.00665EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/09/02 12:0 a.m.7 views

Cyberark Software CyberArk Credential Provider 加密问题漏洞

Cyberark Software CyberArk Credential Provider is an installation credential provider program from CyberArk Software Cyberark Software, Israel. CyberArk Software CyberArk Credential Provider prior to version 12.1 has an encryption issue vulnerability that stems from an inadequate encryption metho...

7.5CVSS7.3AI score0.01763EPSS
Exploits1References7
BDU FSTEC
BDU FSTEC
added 2021/08/19 12:0 a.m.9 views

The vulnerability of the S/MIME protocol implementation in the Thunderbird email client allows a perpetrator to gain unauthorized access to protected information.

The vulnerability of the S/MIME protocol implementation in Thunderbird’s email client is related to insufficiently secure data encryption. Exploiting this vulnerability could allow an attacker, operating remotely, to gain unauthorized access to protected information...

7.8CVSS7.4AI score0.01798EPSS
Exploits0References8Affected Software5
Positive Technologies
Positive Technologies
added 2021/08/02 12:0 a.m.6 views

PT-2021-17481 · Ypsomed · Ypsomed Mylife App +1

Name of the Vulnerable Software and Affected Versions: Ypsomed mylife Cloud versions prior to 1.7.2 Ypsomed mylife App versions prior to 1.7.5 Description: The application layer encryption of the communication protocol between the Ypsomed mylife App and mylife Cloud uses non-random IVs, which...

5.9CVSS5.5AI score0.00475EPSS
Exploits0References4
CNNVD
CNNVD
added 2021/07/12 12:0 a.m.4 views

IBM Cloud Pak for Applications加密问题漏洞

IBM Cloud Pak for Applications is an application from IBM USA, Inc. IBM Cloud Pak for Applications v4.3 contains a security vulnerability that stems from the fact that IBM Cloud Pak for Applications uses a weaker-than-expected encryption algorithm, which could be exploited by an attacker to decry...

7.5CVSS5.6AI score0.0071EPSS
Exploits0References3
CNNVD
CNNVD
added 2021/07/08 12:0 a.m.5 views

MDT AutoSave 代码问题漏洞

MDT AutoSave is a software application. It provides an automated change management function. A code issue vulnerability exists in MDT AutoSave that stems from insufficient software encryption strength. An attacker could use this vulnerability to break the encryption and gain access to the system...

7.5CVSS7.5AI score0.01183EPSS
Exploits0References5
CNNVD
CNNVD
added 2021/06/15 12:0 a.m.5 views

IBM Resilient 安全漏洞

IBM Resilient is a suite of incident response platforms from IBM in the United States. The platform supports functions such as incident response process orchestration and incident management. A security vulnerability exists in IBM Resilient OnPrem, which can be exploited by an attacker to obtain...

4.4CVSS5.7AI score0.00114EPSS
Exploits0References3
OSV
OSV
added 2021/05/11 8:15 p.m.4 views

CVE-2020-24587

The 802.11 standard that underpins Wi-Fi Protected Access WPA, WPA2, and WPA3 and Wired Equivalent Privacy WEP doesn't require that all fragments of a frame are encrypted under the same key. An adversary can abuse this to decrypt selected fragments when another device sends fragmented frames and...

2.6CVSS8.1AI score
Exploits0References9
CNNVD
CNNVD
added 2021/04/12 12:0 a.m.5 views

IBM Jazz Team Server 加密问题漏洞

IBM Jazz Team Server is an application server from IBM USA. Provides base services that enable a group of tools to work together as a single logical server and includes any number of Jazz Team Server Extensions that provide tool-specific functionality. A security vulnerability exists in IBM Jazz...

7.5CVSS5.6AI score0.00719EPSS
Exploits0References4
OSV
OSV
added 2021/03/25 7:15 p.m.4 views

DEBIAN-CVE-2021-3446

A flaw was found in libtpms in versions before 0.8.2. The commonly used integration of libtpms with OpenSSL contained a vulnerability related to the returned IV initialization vector when certain symmetric ciphers were used. Instead of returning the last IV it returned the initial IV to the calle...

5.5CVSS5.7AI score0.00149EPSS
Exploits0References1
OSV
OSV
added 2021/03/25 7:15 p.m.4 views

UBUNTU-CVE-2021-3446

A flaw was found in libtpms in versions before 0.8.2. The commonly used integration of libtpms with OpenSSL contained a vulnerability related to the returned IV initialization vector when certain symmetric ciphers were used. Instead of returning the last IV it returned the initial IV to the calle...

5.5CVSS5.8AI score0.00149EPSS
Exploits0References2
CNNVD
CNNVD
added 2021/03/25 12:0 a.m.5 views

Arch Linux libtpms 安全特征问题漏洞

Arch Linux libtpms is a US Arch Linux open source application. A library that provides software emulation of Trusted Platform Modules TPM 1.2 and TPM 2.0. Arch Linux libtpms 0.8.2 suffers from a security signature issue vulnerability that stems from not returning the last initialization vector, b...

10CVSS6.5AI score0.01637EPSS
Exploits0References3
Rows per page
Query Builder