CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Packet Storm News•added 2025/08/11 12:0 a.m.•3 views

A Comparative Analysis of Lightweight Hash Functions Using AVR ATXMega128 and ChipWhisperer

Lightweight hash functions have become important building blocks for security in embedded and IoT systems. A plethora of algorithms have been proposed and standardized, providing a wide range of performance trade-off options for developers to choose from. This paper presents a comparative analysi...

7.1AI score

Packet Storm News•added 2025/06/25 12:0 a.m.•3 views

Don'T Hash Me like That: Exposing and Mitigating Hash-Induced Unfairness in Local Differential Privacy

Local differential privacy LDP has become a widely accepted framework for privacy-preserving data collection. In LDP, many protocols rely on hash functions to implement user-side encoding and perturbation. However, the security and privacy implications of hash function selection have not been...

6.8AI score

CVE•added 2025/02/27 2:7 a.m.•114 views

CVE-2024-57982

CVE-2024-57982 — Linux kernel xfrm state lookup : A race between lookup and hash table resizing could observe an hmask value too large for the new hashtable, enabling an out-of-bounds read in xfrm_state_lookup_byaddr() during lookup. The fix prefetches net->xfrm.state_hmask and associated poin...

7.1CVSS6.4AI score0.0001EPSS

Exploits0References4Affected Software1

Github Security Blog•added 2025/01/30 7:28 p.m.•4 views

Soundness issue with Plonky2 look up tables

Impact Lookup tables, whose length is not divisible by 26 = floornumroutedwires / 3 always include the 0 - 0 input-output pair. Thus a malicious prover can always prove that f0 = 0 for any lookup table f unless its length happens to be divisible by 26. The cause of problem is that the...

8.6CVSS6.6AI score0.00119EPSS

Exploits0References5Affected Software1

Cvelist•added 2024/09/30 7:7 a.m.•12 views

CVE-2024-8452 PLANET Technology switch devices - Insecure hash functions used for SNMPv3 credentials

Certain switch models from PLANET Technology only support obsolete algorithms for authentication protocol and encryption protocol in the SNMPv3 service, allowing attackers to obtain plaintext SNMPv3 credentials potentially...

7.5CVSS0.00133EPSS

Vulnrichment•added 2024/09/30 7:7 a.m.•10 views

CVE-2024-8452 PLANET Technology switch devices - Insecure hash functions used for SNMPv3 credentials

7.5CVSS7.1AI score0.00133EPSS

Kitploit•added 2024/03/17 11:30 a.m.•23 views

mapXplore - Allow Exporting The Information Downloaded With Sqlmap To A Relational Database Like Postgres And Sqlite

mapXplore is a modular application that imports data extracted of the sqlmap to PostgreSQL or SQLite database. Its main features are: Import of information extracted from sqlmap to PostgreSQL or SQLite for subsequent querying. Sanitized information, which means that at the time of import, it...

6.9AI score

Exploits0References4

RedHat Linux•added 2023/03/14 1:57 p.m.•66 views

Important: Red Hat Security Advisory: openssl security and bug fix update

An update for openssl is now available for Red Hat Enterprise Linux 9.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

7.5CVSS7.2AI score0.88334EPSS

Exploits0References20

Kitploit•added 2022/11/05 11:30 a.m.•19 views

Prefetch-Hash-Cracker - A Small Util To Brute-Force Prefetch Hashes

Motivation During the forensic analysis of a Windows machine, you may find the name of a deleted prefetch file. While its content may not be recoverable, the filename itself is often enough to find the full path of the executable for which the prefetch file was created. Using the tool The followi...

7AI score

The Hacker News•added 2022/07/06 5:19 p.m.•39 views

NIST Announces First Four Quantum-Resistant Cryptographic Algorithms

The U.S. Department of Commerce's National Institute of Standards and Technology NIST has chosen the first set of quantum-resistant encryption algorithms that are designed to "withstand the assault of a future quantum computer." The post-quantum cryptography PQC technologies include the...

The Hacker News•added 2021/04/26 11:3 a.m.•68 views

Apple AirDrop Bug Could Leak Your Personal Info to Anyone Nearby

New research has uncovered privacy weaknesses in Apple's wireless file-sharing protocol that could result in the exposure of a user's contact information such as email addresses and phone numbers. "As an attacker, it is possible to learn the phone numbers and email addresses of AirDrop users – ev...

0.7AI score

Fedora•added 2018/07/20 5:0 p.m.•29 views

[SECURITY] Fedora 27 Update: libtomcrypt-1.18.2-1.fc27

A comprehensive, modular and portable cryptographic toolkit that provides developers with a vast array of well known published block ciphers, one-way hash functions, chaining modes, pseudo-random number generators, public key cryptography and a plethora of other routines. Designed from the ground...

6.5CVSS1.2AI score0.14445EPSS

Fedora•added 2018/07/19 6:6 p.m.•42 views

[SECURITY] Fedora 28 Update: libtomcrypt-1.18.2-1.fc28

6.5CVSS1.2AI score0.14445EPSS

Malwarebytes•added 2018/03/30 3:0 p.m.•59 views

TLS 1.3 is nearly here

TLS stands for "Transport Layer Security" and it's rather important. Why's that? Oh, I'm glad you asked. Here's me, yelling my password across the office to you: "PASSWORD!!!" You heard me loud and clear, right? But so did basically anyone else nearby. Now let's work in a little TLS love and...

7AI score

Fedora•added 2018/03/06 5:34 p.m.•25 views

[SECURITY] Fedora 26 Update: python-crypto-2.6.1-22.fc26

PyCrypto is a collection of both secure hash functions such as MD5 and SHA, and various encryption algorithms AES, DES, RSA, ElGamal, etc...

7.5CVSS2.3AI score0.00911EPSS

Fedora•added 2018/02/27 5:31 p.m.•36 views

[SECURITY] Fedora 27 Update: python-crypto-2.6.1-22.fc27

PyCrypto is a collection of both secure hash functions such as MD5 and SHA, and various encryption algorithms AES, DES, RSA, ElGamal, etc...

7.5CVSS2.3AI score0.00911EPSS

Fedora•added 2017/01/30 10:18 p.m.•37 views

[SECURITY] Fedora 24 Update: python-crypto-2.6.1-13.fc24

PyCrypto is a collection of both secure hash functions such as MD5 and SHA, and various encryption algorithms AES, DES, RSA, ElGamal, etc...

9.8CVSS2.3AI score0.13624EPSS