Lucene search
K

25564 matches found

OSV
OSV
added 2026/03/03 6:16 p.m.3 views

CVE-2025-63912

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to use a weak cryptography algorithm for data encryption, allowing attackers to trivially reverse the encyption and expose credentials...

7.5CVSS5.8AI score0.00133EPSS
Exploits2References2
NVD
NVD
added 2026/03/03 6:16 p.m.4 views

CVE-2025-63912

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to use a weak cryptography algorithm for data encryption, allowing attackers to trivially reverse the encyption and expose credentials...

7.5CVSS0.00133EPSS
Exploits2References2
Snyk
Snyk
added 2026/03/03 2:50 p.m.4 views

Missing Encryption of Sensitive Data

Overview github.com/rancher/rancher/pkg/controllers/management/node is a complete container management platform Affected versions of this package are vulnerable to Missing Encryption of Sensitive Data in the cluster creation using RKE templates with Weave CNI, where the WEAVEPASSWORD is not set,...

7.6CVSS5.8AI score0.00369EPSS
Exploits1References2
Github Security Blog
Github Security Blog
added 2026/03/03 2:50 p.m.15 views

Rancher's weave CNI password is not configured when a cluster is created from an RKE template

Impact This vulnerability only affects customers using Weave CNI Container Network Interface when configured through RKE templates. A flaw was discovered in Rancher versions from 2.5.0 up to and including 2.5.13 and from 2.6.0 up to and including 2.6.4, where a UI user interface issue with RKE...

6.8CVSS6.7AI score0.00369EPSS
Exploits1References4Affected Software1
Vulnrichment
Vulnrichment
added 2026/03/03 12:0 a.m.4 views

CVE-2025-63912

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to use a weak cryptography algorithm for data encryption, allowing attackers to trivially reverse the encyption and expose credentials...

5.9AI score0.00133EPSS
Exploits2References2
Cvelist
Cvelist
added 2026/03/03 12:0 a.m.20 views

CVE-2025-63912

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to use a weak cryptography algorithm for data encryption, allowing attackers to trivially reverse the encyption and expose credentials...

0.00133EPSS
Exploits2References2
ATTACKERKB
ATTACKERKB
added 2026/03/03 12:0 a.m.4 views

CVE-2025-63912

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to use a weak cryptography algorithm for data encryption, allowing attackers to trivially reverse the encyption and expose credentials...

5.9AI score0.00133EPSS
Exploits2References3
CNNVD
CNNVD
added 2026/03/03 12:0 a.m.4 views

IBM Aspera faspio Gateway 加密问题漏洞

IBM Aspera faspio Gateway is a data transfer software developed by IBM Corporation. Version 1.3.6 of IBM Aspera faspio Gateway contains a vulnerability related to encryption. This vulnerability stems from the use of an encryption algorithm that is weaker than expected, which may allow attackers t...

7.5CVSS5.8AI score0.00167EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/03/03 12:0 a.m.4 views

IBM MQ Appliance 加密问题漏洞

IBM MQ Appliance is an IBM software that is pre-installed on specialized, secure hardware. Versions of IBM MQ Appliance 9.4 CD 9.4.4.1 and earlier have a security vulnerability due to the use of encryption algorithms that are weaker than expected. This vulnerability may allow attackers to decrypt...

5.9CVSS5.8AI score0.0017EPSS
Exploits0References2
Positive Technologies
Positive Technologies
added 2026/03/03 12:0 a.m.5 views

PT-2026-22771

Name of the Vulnerable Software and Affected Versions Cohesity TranZman Migration Appliance version 4.0 Build 14614 Description The Cohesity TranZman Migration Appliance utilizes a weak cryptography algorithm for data encryption. This allows attackers to easily reverse the encryption process and...

7.5CVSS5.8AI score0.00133EPSS
Exploits2References8
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.3 views

Unity Linux 20.1070a Security Update: kernel (UTSA-2026-005684)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-005684 advisory. In the Linux kernel, the following vulnerability has been resolved: ext4: don't set up encryption key during jbd2 transaction Commit a80f7fcf1867 ext4: fixup...

5.5CVSS6.4AI score0.00095EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/03/03 12:0 a.m.3 views

CVE-2024-55023

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded encryption key which could allow attackers to access sensitive information...

5.3CVSS5.9AI score0.00174EPSS
Exploits0References3
CNNVD
CNNVD
added 2026/03/03 12:0 a.m.5 views

Weintek cMT-3072XH2 easyweb 安全漏洞

Weintek cMT-3072XH2 easyweb is an intelligent human-computer interaction interface developed by Weintek Company in Taiwan, China. The version v2.1.53 of Weintek cMT-3072XH2 easyweb contains a security vulnerability. This vulnerability stems from the presence of hard-coded encryption keys, which m...

5.3CVSS5.8AI score0.00174EPSS
Exploits0References2
CVE
CVE
added 2026/03/03 12:0 a.m.8 views

CVE-2024-55023

Weintek cMT-3072XH2 easyweb v2.1.53 on OS v20231011 contains a hardcoded encryption key, enabling potential access to sensitive information (CVE-2024-55023). Affected component: easyweb (Weintek). Underlying cause: hardcoded key disclosed in description. Documented impact: confidentiality impact ...

5.3CVSS5.9AI score0.00174EPSS
Exploits0References2Affected Software2
EUVD
EUVD
added 2026/03/03 12:0 a.m.6 views

EUVD-2025-208244

Cohesity TranZman Migration Appliance Release 4.0 Build 14614 was discovered to use a weak cryptography algorithm for data encryption, allowing attackers to trivially reverse the encyption and expose credentials...

5.9AI score0.00133EPSS
Exploits2References2
Cvelist
Cvelist
added 2026/03/03 12:0 a.m.22 views

CVE-2024-55023

Weintek cMT-3072XH2 easyweb v2.1.53, OS v20231011 was discovered to contain a hardcoded encryption key which could allow attackers to access sensitive information...

0.00174EPSS
Exploits0References2
CNNVD
CNNVD
added 2026/03/03 12:0 a.m.8 views

Cohesity TranZman 安全漏洞

Cohesity TranZman is a data migration and recovery software developed by Cohesity Corporation. Version 4.0 Build 14614 of Cohesity TranZman contains a security vulnerability. This vulnerability stems from the use of weak encryption algorithms for data encryption, which may allow attackers to easi...

7.5CVSS5.8AI score0.00133EPSS
Exploits2References3
CVE
CVE
added 2026/03/03 12:0 a.m.13 views

CVE-2025-63912

CVE-2025-63912 affects Cohesity TranZman Migration Appliance Release 4.0 Build 14614. The issue is a weak cryptography algorithm used for data encryption (static XOR in some disclosures), allowing an attacker to reverse encryption and expose credentials. Impact is credential exposure as described...

7.5CVSS5.9AI score0.00133EPSS
Exploits2References2Affected Software1
Tenable Nessus
Tenable Nessus
added 2026/03/03 12:0 a.m.5 views

RockyLinux 9 : skopeo (RLSA-2026:3340)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2026:3340 advisory. crypto/x509: golang: Denial of Service due to excessive resource consumption via crafted certificate CVE-2025-61729 golang: net/url: Memory exhaustion in...

10CVSS6AI score0.01945EPSS
Exploits3References7
Cvelist
Cvelist
added 2026/03/02 9:20 p.m.30 views

CVE-2026-3337 Timing Side-Channel in AES-CCM Tag Verification in AWS-LC

Observable timing discrepancy in AES-CCM decryption in AWS-LC allows an unauthenticated user to potentially determine authentication tag validity via timing analysis. The impacted implementations are through the EVP CIPHER API: EVPaes128ccm, EVPaes192ccm, and EVPaes256ccm. Customers of AWS servic...

8.2CVSS0.01079EPSS
Exploits0References3
Rows per page
Query Builder