Lucene search
K

52 matches found

CNVD
CNVD
added 2022/04/22 12:0 a.m.15 views

Cisco Umbrella Secure Web Gateway文件解密绕过漏洞

Cisco Umbrella is a cloud security platform from the U.S. company Cisco Cisco. The platform prevents cyber threats such as phishing, malware and ransomware.Cisco Umbrella Secure Web Gateway has a file decryption bypass vulnerability that can be exploited by authenticated attackers to bypass the...

4.1CVSS2.1AI score0.00176EPSS
Exploits0References1
Kitploit
Kitploit
added 2020/12/07 8:30 p.m.88 views

Baphomet - Basic Concept Of How A Ransomware Works

This is a proof of concept of how a ransomware works, and some techniques that we usually use to hijack our files. This project is written in C using the net-core application framework 3.1.The main idea of the code is to make it as readable as possible so that people have an idea of how this type...

7.1AI score
Exploits0References1
Kitploit
Kitploit
added 2019/06/26 9:44 p.m.384 views

Cryptr - A Simple Shell Utility For Encrypting And Decrypting Files Using OpenSSL

A simple shell utility for encrypting and decrypting files using OpenSSL. Installation git clone https://github.com/nodesocket/cryptr.git ln -s "$PWD"/cryptr/cryptr.bash /usr/local/bin/cryptr Bash tab completion Add tools/cryptr-bash-completion.bash to your tab completion file directory...

7.3AI score
Exploits0References3
Malwarebytes
Malwarebytes
added 2018/04/12 5:34 p.m.82 views

Encryption 101: decryption tool code walkthrough

We have reached the final installment of our Encryption 101 series. In the prior post, we walked through, in detail, the thought process while looking at the Princess Locker ransomware. We talked about the specific ways to narrow down the analysis toward the encryption portions, the weaknesses in...

7.2AI score
Exploits0
CNVD
CNVD
added 2017/12/04 12:0 a.m.3 views

iSmartAlarm CubeOne Log File Decryption Vulnerability

The iSmartAlarm CubeOne is a smart home center control device from iSmartAlarm USA. A security vulnerability exists in the firmware of iSmartAlarm CubeOne 2.2.4.8 and earlier versions. An attacker can exploit the vulnerability to decrypt log files...

7.5CVSS6.8AI score0.00442EPSS
Exploits1References1
Prion
Prion
added 2017/12/01 5:29 p.m.18 views

Code injection

Encryption key exposure in firmware in iSmartAlarm CubeOne version 2.2.4.8 and earlier allows attackers to decrypt log files via an exposed key...

5CVSS7.5AI score0.00442EPSS
Exploits1References1Affected Software1
OSV
OSV
added 2017/12/01 5:29 p.m.4 views

CVE-2017-13663

Encryption key exposure in firmware in iSmartAlarm CubeOne version 2.2.4.8 and earlier allows attackers to decrypt log files via an exposed key...

7.5CVSS5.8AI score0.00442EPSS
Exploits1References1
CVE
CVE
added 2017/12/01 5:0 p.m.44 views

CVE-2017-13663

CVE-2017-13663 affects iSmartAlarm CubeOne firmware (2.2.4.8 and earlier). The vulnerability stems from an exposed encryption key in the device firmware, enabling an attacker to decrypt log files. Documented impact: confidentiality of log data compromised; no explicit remediation details or patch...

7.5CVSS7.5AI score0.00442EPSS
Exploits1References1Affected Software1
NVD
NVD
added 2017/11/16 3:29 p.m.18 views

CVE-2017-16560

SanDisk Secure Access 3.01 vault decrypts and copies encrypted files to a temporary folder, where they can remain indefinitely in certain situations, such as if the file is being edited when the user exits the application or if the application crashes...

4.3CVSS4.6AI score0.00419EPSS
Exploits0References1
Cvelist
Cvelist
added 2017/11/16 3:0 p.m.19 views

CVE-2017-16560

SanDisk Secure Access 3.01 vault decrypts and copies encrypted files to a temporary folder, where they can remain indefinitely in certain situations, such as if the file is being edited when the user exits the application or if the application crashes...

4.6AI score0.00419EPSS
Exploits0References1
CNVD
CNVD
added 2017/10/16 12:0 a.m.3 views

Hitachi HIBUN Confidential File Decryption Program Untrustworthy Search Path Vulnerability (CNVD-2017-30835)

Hitachi HIBUN Confidential File Decryption program is a set of confidential file confidentiality program from Hitachi Solutions Japan. An untrustworthy search path vulnerability exists in Hitachi HIBUN Confidential File Decryption program versions prior to 10.50.0.5. The vulnerability can be...

9.3CVSS7.8AI score0.01008EPSS
Exploits0References1
Prion
Prion
added 2017/10/12 2:29 p.m.11 views

Design/Logic Flaw

Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10863...

9.3CVSS7.6AI score0.01059EPSS
Exploits0References2
NVD
NVD
added 2017/10/12 2:29 p.m.15 views

CVE-2017-10863

Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10865...

9.3CVSS7.7AI score0.01059EPSS
Exploits0References2
Prion
Prion
added 2017/10/12 2:29 p.m.11 views

Design/Logic Flaw

Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10865...

9.3CVSS7.6AI score0.01059EPSS
Exploits0References2
NVD
NVD
added 2017/10/12 2:29 p.m.14 views

CVE-2017-10865

Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10863...

9.3CVSS7.7AI score0.01008EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/10/12 2:0 p.m.16 views

CVE-2017-10865

Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10863...

7.7AI score0.01008EPSS
Exploits0References2
Cvelist
Cvelist
added 2017/10/12 2:0 p.m.22 views

CVE-2017-10863

Untrusted search path vulnerability in HIBUN Confidential File Decryption program prior to 10.50.0.5 allows an attacker to gain privileges via a Trojan horse DLL in an unspecified directory. Note this is a separate vulnerability from CVE-2017-10865...

7.7AI score0.01059EPSS
Exploits0References2
CVE
CVE
added 2017/10/12 2:0 p.m.41 views

CVE-2017-10865

Hitachi HIBUN Confidential File Decryption Program (pre-10.50.0.5) is affected by an untrusted search path vulnerability that can allow a local attacker to escalate privileges by placing a Trojan DLL in an unsecured directory. The root cause is an untrusted search path during DL loading. The asso...

9.3CVSS7.6AI score0.01008EPSS
Exploits0References2Affected Software1
CVE
CVE
added 2017/10/12 2:0 p.m.51 views

CVE-2017-10863

Hitachi HIBUN Confidential File Decryption Program is affected by an untrusted search path vulnerability in versions prior to 10.50.0.5. The underlying issue allows a local attacker to gain privileges by placing a Trojan horse DLL in an exploitable directory, leveraged via a malicious DLL search ...

9.3CVSS7.6AI score0.01059EPSS
Exploits0References2Affected Software1
Japan Vulnerability Notes
Japan Vulnerability Notes
added 2017/10/11 7:43 a.m.2 views

HIBUN Confidential File Decryption program may insecurely load Dynamic Link Libraries

Overview HIBUN Confidential File Decryption program provided by Hitachi Solutions, Ltd. contains an issue with the DLL search path, which may lead to insecurely loading Dynamic Link Libraries CWE-427. Note that this vulnerability is different from JVN55516206. Yuji Tounai of NTT Communications...

9.3CVSS6.8AI score0.01059EPSS
Exploits0References6
Rows per page
Query Builder