Lucene search
K

62 matches found

EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2008-3662

Malware in sbrugna...

4.3CVSS6.4AI score0.02755EPSS
Exploits1References7
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2013-5411

Malware in sbrugna...

5.9CVSS6AI score0.00886EPSS
Exploits1References2
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-22113

Malicious code in bioql PyPI...

4.6CVSS6.6AI score0.00294EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-22112

Malicious code in bioql PyPI...

4.6CVSS6.6AI score0.00191EPSS
Exploits1References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.7 views

EUVD-2025-22115

Malicious code in bioql PyPI...

5.1CVSS6.6AI score0.00226EPSS
Exploits1References3
RedhatCVE
RedhatCVE
added 2025/07/23 12:57 a.m.13 views

CVE-2025-52373

Use of hardcoded cryptographic key in BlowFish.cpp in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords used in database connections from hMailServer.ini config file...

4.6CVSS7.2AI score0.00294EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/07/23 12:57 a.m.14 views

CVE-2025-52374

Use of hardcoded cryptographic key in Encryption.cs in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords to other servers from hMailAdmin.exe.config file to access other hMailServer admin consoles with configured connections...

4.6CVSS7.2AI score0.00191EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/07/23 12:57 a.m.12 views

CVE-2025-52372

An issue in hMailServer v.5.8.6 allows a local attacker to obtain sensitive information via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components...

5.1CVSS6.4AI score0.00226EPSS
Exploits1References1
Snyk
Snyk
added 2025/07/21 4:43 p.m.3 views

Use of Weak Hash

Overview Affected versions of this package are vulnerable to Use of Weak Hash via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components. A local attacker can access sensitive information by reading these files to obtain an administrator password and running it...

8.5CVSS6.6AI score0.00226EPSS
Exploits1References2
Snyk
Snyk
added 2025/07/21 4:43 p.m.2 views

Use of Hard-coded Cryptographic Key

Overview Affected versions of this package are vulnerable to Use of Hard-coded Cryptographic Key via the use of hardcoded cryptographic key in Encryption.cs. A local attacker can obtain decrypted credentials to other servers from hMailAdmin.exe.config file and access other hMailServer admin...

8.5CVSS6.7AI score0.00191EPSS
Exploits1References2
NVD
NVD
added 2025/07/21 4:15 p.m.10 views

CVE-2025-52374

Use of hardcoded cryptographic key in Encryption.cs in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords to other servers from hMailAdmin.exe.config file to access other hMailServer admin consoles with configured connections...

4.6CVSS0.00191EPSS
Exploits1References3
NVD
NVD
added 2025/07/21 4:15 p.m.7 views

CVE-2025-52372

An issue in hMailServer v.5.8.6 allows a local attacker to obtain sensitive information via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components...

5.1CVSS0.00226EPSS
Exploits1References3
OSV
OSV
added 2025/07/21 4:15 p.m.4 views

CVE-2025-52372

An issue in hMailServer v.5.8.6 allows a local attacker to obtain sensitive information via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components...

5.1CVSS5.8AI score0.00226EPSS
Exploits1References3
OSV
OSV
added 2025/07/21 4:15 p.m.2 views

CVE-2025-52373

Use of hardcoded cryptographic key in BlowFish.cpp in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords used in database connections from hMailServer.ini config file...

4.6CVSS5.8AI score0.00294EPSS
Exploits1References3
NVD
NVD
added 2025/07/21 4:15 p.m.6 views

CVE-2025-52373

Use of hardcoded cryptographic key in BlowFish.cpp in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords used in database connections from hMailServer.ini config file...

4.6CVSS0.00294EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/07/21 12:0 a.m.4 views

PT-2025-30301 · Unknown · Hmailserver

Name of the Vulnerable Software and Affected Versions: hMailServer versions 5.6.9-beta hMailServer versions 5.8.6 Description: The software contains a hardcoded cryptographic key in the BlowFish.cpp file. This allows an attacker to decrypt passwords used in database connections from the...

4.6CVSS6AI score0.00294EPSS
Exploits1References6
Cvelist
Cvelist
added 2025/07/21 12:0 a.m.9 views

CVE-2025-52374

Use of hardcoded cryptographic key in Encryption.cs in hMailServer 5.8.6 and 5.6.9-beta allows attacker to decrypt passwords to other servers from hMailAdmin.exe.config file to access other hMailServer admin consoles with configured connections...

0.00191EPSS
Exploits1References3
CVE
CVE
added 2025/07/21 12:0 a.m.17 views

CVE-2025-52373

The CVE-2025-52373 entry describes a vulnerability in hMailServer where a hardcoded cryptographic key in BlowFish.cpp affects versions 5.8.6 and 5.6.9-beta. This enables an attacker to decrypt passwords used for database connections from hMailServer.ini. The impact is disclosure of stored DB cred...

4.6CVSS6.5AI score0.00294EPSS
Exploits1References3Affected Software1
Vulnrichment
Vulnrichment
added 2025/07/21 12:0 a.m.4 views

CVE-2025-52372

An issue in hMailServer v.5.8.6 allows a local attacker to obtain sensitive information via the hmailserver/installation/hMailServerInnoExtension.iss and hMailServer.ini components...

6.4AI score0.00226EPSS
Exploits1References3
Positive Technologies
Positive Technologies
added 2025/07/21 12:0 a.m.6 views

PT-2025-30302 · Unknown · Hmailserver

Name of the Vulnerable Software and Affected Versions: hMailServer versions 5.6.9-beta through 5.8.6 Description: The software uses a hardcoded cryptographic key in the Encryption.cs file. This allows an attacker to decrypt passwords for other servers stored in the hMailAdmin.exe.config file,...

4.6CVSS6.2AI score0.00191EPSS
Exploits1References5
Rows per page
Query Builder