CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Gessler GmbH WEB-MASTER user account is stored using a weak hashing algorithm. The attacker can restore the passwords by breaking the hashes stored on the device...

4.4CVSS4.6AI score0.0001EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 1:18 a.m.•3 views

CVE-2022-30320

Saia Burgess Controls SBC PCD through 2022-05-06 uses a Broken or Risky Cryptographic Algorithm. According to FSCT-2022-0063, there is a Saia Burgess Controls SBC PCD S-Bus weak credential hashing scheme issue. The affected components are characterized as: S-Bus 5050/UDP authentication. The...

4.3CVSS7.2AI score0.00029EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:45 a.m.•4 views

CVE-2022-4036

The Appointment Hour Booking plugin for WordPress is vulnerable to CAPTCHA bypass in versions up to, and including, 1.3.72. This is due to the use of insufficiently strong hashing algorithm on the CAPTCHA secret that is also displayed to the user via a cookie...

5.3CVSS6.7AI score0.001EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 7:19 p.m.•4 views

CVE-2021-23855

The user and password data base is exposed by an unprotected web server resource. Passwords are hashed with a weak hashing algorithm and therefore allow an attacker to determine the password by using rainbow tables...

8.6CVSS7.1AI score0.00151EPSS

Exploits0References1

RedhatCVE•added 2025/05/22 5:10 p.m.•6 views

CVE-2020-35221

The hashing algorithm implemented for NSDP password authentication on NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 devices was found to be insecure, allowing attackers with access to a network capture to quickly generate multiple collisions to generate valid passwords, or infer some parts of the original...

8.8CVSS7.4AI score0.00044EPSS

Exploits0

RedhatCVE•added 2025/05/22 3:49 a.m.•6 views

CVE-2010-4302

/opt/rv/Versions/CurrentVersion/Mcu/Config/Mcu.val in Cisco Unified Videoconferencing UVC System 5110 and 5115, when the Linux operating system is used, uses a weak hashing algorithm for the 1 administrator and 2 operator passwords, which makes it easier for local users to obtain sensitive...

4.9CVSS6.2AI score0.00062EPSS

Exploits0References1

OSV•added 2025/03/20 6:31 a.m.•0 views

GHSA-MG83-C7GQ-RV5C Spring Security Does Not Enforce Password Length

BCryptPasswordEncoder.matchesCharSequence,String will incorrectly return true for passwords larger than 72 characters as long as the first 72 characters are the same...

7.4CVSS7.1AI score0.00065EPSS

Exploits0References5

RedhatCVE•added 2025/03/16 1:15 p.m.•4 views

CVE-2025-27595

The device uses a weak hashing alghorithm to create the password hash. Hence, a matching password can be easily calculated by an attacker. This impacts the security and the integrity of the device...

9.8CVSS7.3AI score0.00097EPSS

Exploits0References9

Cvelist•added 2025/03/14 12:53 p.m.•9 views

CVE-2025-27595 Weak hashing alghrythm

The device uses a weak hashing alghorithm to create the password hash. Hence, a matching password can be easily calculated by an attacker. This impacts the security and the integrity of the device...

9.8CVSS0.00097EPSS

Exploits0References7

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by