Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1045 matches found

OSV
OSVadded 2023/12/12 5:15 p.m.7 views

CVE-2023-4421

The NSS code used for checking PKCS1 v1.5 was leaking information useful in mounting Bleichenbacher-like attacks. Both the overall correctness of the padding as well as the length of the encrypted message was leaking through timing side-channel. By sending large number of attacker-selected...

6.5CVSS6.3AI score
Exploits0References3
OSV
OSVadded 2023/12/12 5:15 p.m.1 views

UBUNTU-CVE-2023-4421

The NSS code used for checking PKCS1 v1.5 was leaking information useful in mounting Bleichenbacher-like attacks. Both the overall correctness of the padding as well as the length of the encrypted message was leaking through timing side-channel. By sending large number of attacker-selected...

6.5CVSS7.2AI score0.00224EPSS
Exploits0References6
UbuntuCve
UbuntuCveadded 2023/12/12 5:15 p.m.54 views

CVE-2023-4421

The NSS code used for checking PKCS1 v1.5 was leaking information useful in mounting Bleichenbacher-like attacks. Both the overall correctness of the padding as well as the length of the encrypted message was leaking through timing side-channel. By sending large number of attacker-selected...

6.5CVSS6.8AI score0.00224EPSS
Exploits0References5
Prion
Prionadded 2023/12/12 5:15 p.m.47 views

Design/Logic Flaw

The NSS code used for checking PKCS1 v1.5 was leaking information useful in mounting Bleichenbacher-like attacks. Both the overall correctness of the padding as well as the length of the encrypted message was leaking through timing side-channel. By sending large number of attacker-selected...

4CVSS6.6AI score0.00224EPSS
Exploits0References2Affected Software1
Cvelist
Cvelistadded 2023/12/12 5:2 p.m.26 views

CVE-2023-4421

The NSS code used for checking PKCS1 v1.5 was leaking information useful in mounting Bleichenbacher-like attacks. Both the overall correctness of the padding as well as the length of the encrypted message was leaking through timing side-channel. By sending large number of attacker-selected...

6.6AI score0.00224EPSS
Exploits0References2
Mozilla
Mozillaadded 2023/12/12 12:0 a.m.23 views

Timing side-channel in PKCS#1 v1.5 decryption depadding code — Mozilla

The NSS code used for checking PKCS1 v1.5 was leaking information useful in mounting Bleichenbacher-like attacks. Both the overall correctness of the padding as well as the length of the encrypted message was leaking through timing side-channel. By sending large number of attacker-selected...

6.5CVSS6.9AI score0.00224EPSS
Exploits0References1Affected Software1
NVD
NVDadded 2023/12/05 3:15 a.m.9 views

CVE-2023-42572

Implicit intent hijacking vulnerability in Samsung Account Web SDK prior to version 1.5.24 allows attacker to get sensitive information...

5.5CVSS0.00099EPSS
Exploits0References1
OSV
OSVadded 2023/12/05 3:15 a.m.3 views

CVE-2023-42572

Implicit intent hijacking vulnerability in Samsung Account Web SDK prior to version 1.5.24 allows attacker to get sensitive information...

5.5CVSS5.8AI score
Exploits0References1
OSV
OSVadded 2023/12/05 3:15 a.m.0 views

CVE-2023-42556

Improper usage of implicit intent in Contacts prior to SMR Dec-2023 Release 1 allows attacker to get sensitive information...

5.5CVSS5.8AI score
Exploits0References1
Prion
Prionadded 2023/12/05 3:15 a.m.12 views

Information disclosure

Implicit intent hijacking vulnerability in Samsung Account Web SDK prior to version 1.5.24 allows attacker to get sensitive information...

1.9CVSS6.9AI score0.00099EPSS
Exploits0References1Affected Software1
CVE
CVEadded 2023/12/05 2:44 a.m.30 views

CVE-2023-42572

CVE-2023-42572 affects Samsung Account Web SDK prior to version 1.5.24. The vulnerability is described as an implicit intent hijacking that could allow an attacker to obtain sensitive information. Documents consistently reference the affected component as the Samsung Account Web SDK and indicate ...

5.5CVSS5.4AI score0.00099EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/12/05 2:44 a.m.14 views

CVE-2023-42572

Implicit intent hijacking vulnerability in Samsung Account Web SDK prior to version 1.5.24 allows attacker to get sensitive information...

3.3CVSS5.7AI score0.00099EPSS
Exploits0References1
CVE
CVEadded 2023/12/05 2:44 a.m.41 views

CVE-2023-42556

CVE-2023-42556 affects Samsung Contacts prior to SMR Dec-2023 Release 1. The issue is due to improper usage of implicit intents in Contacts, enabling an attacker to obtain sensitive information. Affected component: Contacts (Samsung Mobile). Impact is limited to information disclosure; CVSS data ...

5.5CVSS5.4AI score0.00099EPSS
Exploits0References1Affected Software1
Cvelist
Cvelistadded 2023/12/05 2:44 a.m.15 views

CVE-2023-42556

Improper usage of implicit intent in Contacts prior to SMR Dec-2023 Release 1 allows attacker to get sensitive information...

3.3CVSS5.7AI score0.00099EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/12/05 12:0 a.m.2 views

SAMSUNG Mobile devices security vulnerability

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc. from the South Korean company Samsung. A security vulnerability previously existed in SAMSUNG Mobile devices version 1.5.24, which stemmed from an implicit intent hijacking vulnerability in the...

5.5CVSS5.6AI score0.00099EPSS
Exploits0References1
CNNVD
CNNVDadded 2023/12/05 12:0 a.m.2 views

SAMSUNG Mobile devices security vulnerability

SAMSUNG Mobile devices are a range of Samsung mobile devices, including cell phones, tablets, etc. from the South Korean company Samsung SAMSUNG. A security vulnerability previously existed in SAMSUNG Mobile devices SMR Dec-2023 Release 1 version, which stemmed from improper use of Contacts with...

5.5CVSS5.5AI score0.00099EPSS
Exploits0References1
Positive Technologies
Positive Technologiesadded 2023/12/04 12:0 a.m.2 views

PT-2023-28424 · Contacts · Contacts

Name of the Vulnerable Software and Affected Versions: Contacts versions prior to SMR Dec-2023 Release 1 Description: The issue is related to the improper usage of implicit intent in Contacts, which allows an attacker to obtain sensitive information. Recommendations: For versions prior to SMR...

5.5CVSS5.3AI score0.00099EPSS
Exploits0References5
ICS
ICSadded 2023/11/14 7:0 a.m.25 views

Rockwell Automation SIS Workstation and ISaGRAF Workbench

View CSAF 1. EXECUTIVE SUMMARY CVSS v3 7.8 ATTENTION : Low attack complexity Vendor : Rockwell Automation Equipment : SIS Workstation and ISaGRAF Workbench Vulnerability : Improper Input Validation 2. RISK EVALUATION Successful exploitation of this vulnerability could allow unprivileged local...

9.3CVSS7.7AI score0.00569EPSS
Exploits1References10
RedHat Linux
RedHat Linuxadded 2023/11/08 3:38 p.m.1 views

mariadb: crash in multi-update and implicit grouping

An assertion failure was found in the MariaDB Server. This issue is via, 'node-pcur-relpos == BTRPCURON' at /row/row0mysql.cc, affecting availability...

7.5CVSS7.3AI score0.00172EPSS
Exploits1References4
OSV
OSVadded 2023/11/07 8:15 a.m.0 views

CVE-2023-42555

Use of implicit intent for sensitive communication vulnerability in EasySetup prior to version 11.1.13 allows attackers to get the bluetooth address of user device...

5.5CVSS5.8AI score
Exploits0References1
Rows per page
Query Builder