Lucene search
K

78 matches found

CVE
CVE
added 2021/07/09 6:23 p.m.89 views

CVE-2021-26100

CVE-2021-26100 affects Fortinet FortiMail’s Identity-Based Encryption (IBE) service prior to version 7.0.0. The issue is a missing cryptographic step that can allow an unauthenticated attacker who intercepts encrypted messages to tamper with them and recover plaintexts. Fortinet’s PSIRT advisory ...

7.5CVSS7.4AI score0.00342EPSS
Exploits0References1Affected Software1
Vulnrichment
Vulnrichment
added 2021/07/09 6:23 p.m.10 views

CVE-2021-26100

A missing cryptographic step in the Identity-Based Encryption service of FortiMail before 7.0.0 may allow an unauthenticated attacker who intercepts the encrypted messages to manipulate them in such a way that makes the tampering and the recovery of the plaintexts possible...

5.9CVSS6.9AI score0.00342EPSS
Exploits0References1
Cvelist
Cvelist
added 2021/07/09 6:23 p.m.15 views

CVE-2021-26100

A missing cryptographic step in the Identity-Based Encryption service of FortiMail before 7.0.0 may allow an unauthenticated attacker who intercepts the encrypted messages to manipulate them in such a way that makes the tampering and the recovery of the plaintexts possible...

5.9CVSS7.7AI score0.00342EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2021/07/02 12:0 a.m.8 views

PT-2021-3853 · Fortinet · Fortimail

Name of the Vulnerable Software and Affected Versions: FortiMail versions prior to 7.0.0 Description: The issue is related to missing cryptographic steps in the Identity-Based Encryption service of FortiMail, which may allow an attacker to compromise the confidentiality of encrypted master keys b...

4.9CVSS5AI score0.00545EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2021/06/21 12:0 a.m.5 views

PT-2021-3854 · Fortinet · Fortimail

Name of the Vulnerable Software and Affected Versions: FortiMail affected versions not specified Description: The issue is related to errors in the code of the pseudorandom number generator in the FortiMail IBE Identity Based Encryption service. This could allow a remote attacker to gain...

7.8CVSS6.5AI score0.00294EPSS
Exploits0References9
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/02/08 5:0 p.m.35 views

Why threat protection is critical to your Zero Trust security strategy

The corporate network perimeter has been completely redefined. Many IT leaders are adopting a Zero Trust security model where identities play a critical role in helping act as the foundation of their modern cybersecurity strategy. As a result, cybercriminals have shifted their focus and identitie...

0.9AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2021/02/08 5:0 p.m.25 views

Why threat protection is critical to your Zero Trust security strategy

The corporate network perimeter has been completely redefined. Many IT leaders are adopting a Zero Trust security model where identities play a critical role in helping act as the foundation of their modern cybersecurity strategy. As a result, cybercriminals have shifted their focus and identitie...

0.9AI score
Exploits0
Microsoft Malware Protection
Microsoft Malware Protection
added 2020/12/07 5:0 p.m.39 views

Deliver productive and seamless user experiences with Azure Active Directory

Several months into the COVID-19 pandemic, many of us are still working remotely, and our organizations are still adjusting. Top of mind for every IT leader in this current landscape is meeting users’ needs for seamless access to resources while safeguarding the business from cyber threats. The...

Exploits0
Microsoft Secure
Microsoft Secure
added 2020/07/15 6:0 p.m.30 views

Prevent and detect more identity-based attacks with Azure Active Directory

Security incidents often start with just one compromised account. Once an attacker gets their foot in the door, they can escalate privileges or gather intelligence that helps them reach their goals. This is why we say that identity is the new security perimeter. To reduce the risk of a data breac...

0.2AI score
Exploits0
Microsoft Secure
Microsoft Secure
added 2020/06/22 4:0 p.m.30 views

Modernizing the security operations center to better secure a remote workforce

The response to COVID-19 has required many security operations centers SOCs to rethink how they protect their organizations. With so many employees working remotely, IT groups are routing more traffic directly to cloud apps, rather than through the network. In this model, traditional network...

6.9AI score
Exploits0
OSV
OSV
added 2020/03/23 2:32 p.m.7 views

SUSE-SU-2020:0743-1 Security update for strongswan

This update for strongswan fixes the following issues: Strongswan was updated to version 5.8.2 jscSLE-11370. Security issue fixed: - CVE-2018-6459: Fixed a DoS vulnerability in the parser for PKCS1 RSASSA-PSS signatures that was caused by insufficient input validation bsc1079548. Full changelogs:...

5.3CVSS6.9AI score0.01069EPSS
Exploits0References3
OSV
OSV
added 2019/01/08 8:29 p.m.4 views

CVE-2019-0246

SAP Cloud Connector, before version 2.11.3, does not perform any authentication checks for functionalities that require user identity...

9.8CVSS5.8AI score0.02744EPSS
Exploits0References3
OSV
OSV
added 2017/12/12 2:29 p.m.5 views

CVE-2017-16684

SAP Business Intelligence Promotion Management Application, Enterprise 4.10, 4.20, and 4.30, does not perform authentication checks for functionalities that require user identity...

9.8CVSS5.8AI score0.02499EPSS
Exploits0References3
seebug.org
seebug.org
added 2014/07/01 12:0 a.m.42 views

Cyberoam Central Console 2.00.2 - File Include Vulnerability

No description provided by source. Title: ====== Cyberoam Central Console v2.00.2 - File Include Vulnerability Date: ===== 2012-02-08 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=405 VL-ID: ===== 405 Introduction: ============= Cyberoam Central Console CCC appliances...

7.1AI score
Exploits0
Cvelist
Cvelist
added 2013/02/04 7:0 p.m.27 views

CVE-2013-1471

Multiple cross-site scripting XSS vulnerabilities in admin/FEAdmin.html in Fortinet FortiMail before 4.3.4 on FortiMail Identity-Based Encryption IBE appliances allow user-assisted remote attackers to inject arbitrary web script or HTML via 1 the Add field for the Black List under Antispam...

5.8AI score0.02015EPSS
Exploits1References3
0day.today
0day.today
added 2012/03/22 12:0 a.m.30 views

Cyberoam UTM Multiiple Vulnerabilities

Exploit for hardware platform in category web applications Affected Software: Cyberoam CR50ia 10.01.0 build 678 Vulnerability: OS Command Execution Severity: High Release Date: Unreleased I. Background "Cyberoam Unified Threat Management appliances offer assured security, connectivity and...

7.1AI score
Exploits0
exploitpack
exploitpack
added 2012/02/08 12:0 a.m.29 views

Cyberoam Central Console 2.00.2 - Remote File Inclusion

Cyberoam Central Console 2.00.2 - Remote File Inclusion Title: ====== Cyberoam Central Console v2.00.2 - File Include Vulnerability Date: ===== 2012-02-08 References: =========== http://www.vulnerability-lab.com/getcontent.php?id=405 VL-ID: ===== 405 Introduction: ============= Cyberoam Central...

7.5AI score
Exploits0
Packet Storm
Packet Storm
added 2005/08/14 12:0 a.m.28 views

bluecoat7111.txt

Blue Coat Reporter 7.1.1.1 - multiple remote vulnerabilities ============================================================ Blue Coat Reporter ================== "Blue Coat Reporter 7 provides identity-based reporting on Web communications enabling enterprises to evaluate Web policies and manage...

7.4AI score
Exploits0
Rows per page
Query Builder