Lucene search
K

577 matches found

EUVD
EUVD
added 2026/05/12 12:32 p.m.16 views

EUVD-2026-29432

A vulnerability has been identified in Teamcenter V2312 All versions V2312.0014, Teamcenter V2406 All versions V2406.0012, Teamcenter V2412 All versions V2412.0009, Teamcenter V2506 All versions V2506.0005, Teamcenter V2512 All versions. The affected application contains hardcoded key which is us...

8.7CVSS5.7AI score0.00287EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added 2026/05/12 8:21 a.m.5 views

CVE-2026-33893

A vulnerability has been identified in Teamcenter V2312 All versions V2312.0014, Teamcenter V2406 All versions V2406.0012, Teamcenter V2412 All versions V2412.0009, Teamcenter V2506 All versions V2506.0005, Teamcenter V2512 All versions. The affected application contains hardcoded key which is us...

8.7CVSS5.7AI score0.00287EPSS
Exploits0References2
CVE
CVE
added 2026/05/12 8:21 a.m.20 views

CVE-2026-33893

CVE-2026-33893 affects Siemens Teamcenter: V2312 < 2312.0014, V2406 < 2406.0012, V2412 < 2412.0009, V2506 < 2506.0005, and V2512

8.7CVSS5.7AI score0.00287EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2026/05/12 8:21 a.m.43 views

CVE-2026-33893

A vulnerability has been identified in Teamcenter V2312 All versions V2312.0014, Teamcenter V2406 All versions V2406.0012, Teamcenter V2412 All versions V2412.0009, Teamcenter V2506 All versions V2506.0005, Teamcenter V2512 All versions. The affected application contains hardcoded key which is us...

8.7CVSS0.00287EPSS
Exploits0References1
NVD
NVD
added 2026/05/08 7:16 a.m.8 views

CVE-2025-55449

AstrBotDevs AstrBot 3.5.15 has AdvancedSystemforTextResponseandBotOperationsTool as the hardcoded private key used to sign a JWT...

7.3CVSS0.00281EPSS
Exploits2References2
EUVD
EUVD
added 2026/05/08 12:31 a.m.13 views

EUVD-2026-28471

This vulnerability, in the MAXHUB Pivot client application versions prior to v1.36.2, may allow an attacker to obtain encrypted tenant email addresses and related metadata from any tenant. Due to the presence of a hardcoded AES key within the application, the encrypted data can be decrypted,...

7.3CVSS5.8AI score0.00159EPSS
Exploits0References4
ATTACKERKB
ATTACKERKB
added 2026/05/08 12:0 a.m.6 views

CVE-2025-55449

AstrBotDevs AstrBot 3.5.15 has AdvancedSystemforTextResponseandBotOperationsTool as the hardcoded private key used to sign a JWT...

5.8AI score0.00281EPSS
Exploits2References3
NVD
NVD
added 2026/05/07 11:16 p.m.17 views

CVE-2026-6411

This vulnerability, in the MAXHUB Pivot client application versions prior to v1.36.2, may allow an attacker to obtain encrypted tenant email addresses and related metadata from any tenant. Due to the presence of a hardcoded AES key within the application, the encrypted data can be decrypted,...

7.3CVSS0.00159EPSS
Exploits0References3
ATTACKERKB
ATTACKERKB
added 2026/05/07 10:25 p.m.7 views

CVE-2026-6411

This vulnerability, in the MAXHUB Pivot client application versions prior to v1.36.2, may allow an attacker to obtain encrypted tenant email addresses and related metadata from any tenant. Due to the presence of a hardcoded AES key within the application, the encrypted data can be decrypted,...

7.3CVSS5.8AI score0.00159EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/05/07 12:0 a.m.12 views

PT-2026-38599

Name of the Vulnerable Software and Affected Versions MAXHUB Pivot client versions prior to 1.36.2 Description An issue in the application allows an attacker to obtain encrypted tenant email addresses and related metadata from any tenant. Because a hardcoded AES key Advanced Encryption Standard, ...

7.3CVSS5.8AI score0.00159EPSS
Exploits0References8
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/05/01 9:44 p.m.8 views

Malicious code in graphicsctxs (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4786ca298bffb09916e622e06411ae44cb51c842a6eb9bf7bcf445c051463888 Packages in this campaign are used to exfiltrate data from users installing code from prepared Github repositories. Packages contain code to exfiltrate files...

5.8AI score
Exploits0References4
OSV
OSV
added 2026/05/01 9:44 p.m.5 views

MAL-2026-3222 Malicious code in graphicsctxs (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 4786ca298bffb09916e622e06411ae44cb51c842a6eb9bf7bcf445c051463888 Packages in this campaign are used to exfiltrate data from users installing code from prepared Github repositories. Packages contain code to exfiltrate files...

5.8AI score
Exploits0References4
OSSF Malicious Packages
OSSF Malicious Packages
added 2026/04/30 9:38 p.m.8 views

Malicious code in renderctx (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7c668f58ae62e49c301d2e437e96818f41e221768509cfb4cf80b9800b5adf5a Packages in this campaign are used to exfiltrate data from users installing code from prepared Github repositories. Packages contain code to exfiltrate files...

5.8AI score
Exploits0References4
OSV
OSV
added 2026/04/30 9:38 p.m.6 views

MAL-2026-3207 Malicious code in renderctx (PyPI)

--- -= Per source details. Do not edit below this line.=- Source: kam193 7c668f58ae62e49c301d2e437e96818f41e221768509cfb4cf80b9800b5adf5a Packages in this campaign are used to exfiltrate data from users installing code from prepared Github repositories. Packages contain code to exfiltrate files...

5.8AI score
Exploits0References4
CNNVD
CNNVD
added 2026/04/28 12:0 a.m.12 views

XXL-JOB 加密问题漏洞

XXL-JOB is a distributed task scheduling platform developed by xuxueli as an individual project. Versions of XXL-JOB 3.3.2 and earlier contained a security vulnerability related to encryption. This vulnerability stemmed from an unknown function parameter in the component’s OpenAPI Endpoint,...

6.3CVSS6.2AI score0.00327EPSS
Exploits0References1
GithubExploit
GithubExploit
added 2026/04/25 11:39 a.m.132 views

Exploit for CVE-2026-21847

CVE-2026-21847: Hardcoded AES Encryption Key in DPDC Customer...

5.7AI score
Exploits1
CNNVD
CNNVD
added 2026/04/20 12:0 a.m.7 views

DjangoBlog 安全漏洞

DjangoBlog is a blog system developed by liangliangyy using Django. Versions of DjangoBlog 2.1.0.0 and earlier had security vulnerabilities, which stemmed from incorrect handling of the SECRETKEY parameter in the file djangoblog/settings.py. This could lead to the use of hardcoded keys...

3.1CVSS5.8AI score0.00248EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/19 12:0 a.m.7 views

DjangoBlog 安全漏洞

DjangoBlog is a blog system developed by liangliangyy using Django. Versions of DjangoBlog 2.1.0.0 and earlier had security vulnerabilities. These vulnerabilities stemmed from the handling of the key parameter in the owntracks/views.py file, which resulted in the use of a hardcoded encryption key...

7.5CVSS7.2AI score0.00284EPSS
Exploits0References1
Cvelist
Cvelist
added 2026/04/09 3:52 p.m.17 views

CVE-2026-33266 Apache OpenMeetings: Hardcoded Remember-Me Cookie Encryption Key and Salt

Use of Hard-coded Cryptographic Key vulnerability in Apache OpenMeetings. The remember-me cookie encryption key is set to default value in openmeetings.properties and not being auto-rotated. In case OM admin hasn't changed the default encryption key, an attacker who has stolen a cookie from a...

0.00234EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2026/04/09 3:52 p.m.2 views

CVE-2026-33266 Apache OpenMeetings: Hardcoded Remember-Me Cookie Encryption Key and Salt

Use of Hard-coded Cryptographic Key vulnerability in Apache OpenMeetings. The remember-me cookie encryption key is set to default value in openmeetings.properties and not being auto-rotated. In case OM admin hasn't changed the default encryption key, an attacker who has stolen a cookie from a...

5.8AI score0.00234EPSS
Exploits0References1
Rows per page
Query Builder