CVE-2026-34236

CVE-2026-34236 affects the Auth0-PHP SDK. In versions 8.0.0 through 8.18.0, cookies are encrypted with insufficient entropy, which may allow threat actors to brute-force the encryption key and forge session cookies. Multiple trusted sources (NVD, Red Hat, CIRCL, OSV, PT Security, CNNVD) consisten...

BlackBerry SecuSUITE 安全漏洞

BlackBerry SecuSUITE is a multi-platform solution for end-to-end encryption of voice calls and messages from BlackBerry Canada. A security vulnerability exists in BlackBerry SecuSUITE version 5.0.420 and earlier, which stems from the presence of an Entropy Insufficiency Vulnerability that could...

WWBN AVideo Security Feature Issue Vulnerability

WWBN AVideo is a video platform builder written in PHP by the WWBN team. WWBN AVideo suffers from a security signature issue vulnerability that stems from an entropy insufficiency vulnerability in the salt generation method...

GitHub Enterprise Server Security Feature Issue Vulnerability

GitHub Enterprise Server is a U.S. GitHub open source application. It provides a platform for setting up your own GitHub instance as a virtual appliance, thus providing scalable, easy-to-manage platform. A security vulnerability exists in GitHub Enterprise Server 3.8 and later, which stems from t...

PubNub Security Breach

PubNub is a library of PubNub open source . It is used to take care of the infrastructure and APIs required to handle the real-time communication layer of an application. PubNub suffers from a security vulnerability that stems from an inefficient implementation of the AES-256-CBC encryption...

Schweitzer Engineering Laboratories SEL-451 Security Feature Issue Vulnerability

Schweitzer Engineering Laboratories SEL-451 is a complete standalone system from Schweitzer Engineering Laboratories, Inc. A security vulnerability exists in the Schweitzer Engineering Laboratories SEL-451 that stems from the presence of an Entropy Insufficiency Vulnerability, which could allow a...

Rancher 安全特征问题漏洞

Rancher Labs Rancher is a suite of open source, enterprise-grade container management platforms from Rancher Labs, Inc. in the United States. A security signature issue vulnerability exists in SUSE Rancher that stems from the presence of an entropy insufficiency vulnerability that allows an...

Entropy Insufficiency Vulnerability in Pseudo-Random Number Generation in SIEMENS Desigo PX Web Module

SIEMENS Building Automation Systems Desigo PX programmable automation station offers a flexible solution with the ability to signal alarms, time-based logging programs and trends that can be modified or expanded at any time. An entropy insufficiency vulnerability exists in the pseudo-random numbe...

Juniper Networks QFX5100 and QFX10002 Security Bypass Vulnerability

The Juniper Networks QFX5100 and QFX10002 are switch products from Juniper Networks, Inc. The Juniper Networks QFX5100 and QFX10002 use insufficient entropy, allowing remote attackers to exploit the vulnerability to affect system mechanisms and bypass security restrictions...