Bouncy Castle Java 安全漏洞

Bouncy Castle Java is an open-source encryption algorithm developed by Legion of the Bouncy Castle Inc. Versions of Bouncy Castle Java prior to version 1.84 contained security vulnerabilities. These vulnerabilities stemmed from the use of defective or insecure encryption algorithms, which could...

AMS Development GAMS 安全漏洞

AMS Development GAMS is an algebraic modeling system from AMS Development India. AMS Development GAMS suffers from a security vulnerability that stems from checksums and the use of insecure algorithms that could lead to the generation of an unlimited valid license...

Weak Encryption

jose is vulnerable to weak encryption. The vulnerability is due to encryption algorithms that are claimed to not meet recommended security standards, which allows an attacker to potentially bypass intended cryptographic strength...

Siemens多款产品 加密问题漏洞

Siemens RUGGEDCOM i800, among others, is a switch from Siemens, a German company. A vulnerability exists in various Siemens products due to an encryption issue that stems from the use of insecure encryption algorithms, which could lead to a man-in-the-middle attack. The following products and...

CVE-2025-43005

SAP GUI for Windows allows an unauthenticated attacker to exploit insecure obfuscation algorithms used by the GuiXT application to store user credentials. While this issue does not impact the Integrity or Availability of the application, it may have a Low impact on the Confidentiality of data...

CVE-2025-43005

CVE-2025-43005 affects SAP GUI for Windows via insecure obfuscation in GuiXT for storing credentials. This can lead to information disclosure with Low confidentiality impact. The issue is exploitable by an unauthenticated attacker and is classified with a Local attack vector and No privileges req...

Configure Proper Key Algorithms for User Authentication

If the public and private key authentication mode is used, the public and private key algorithms on the client must be restricted to avoid using insecure algorithms that have been phased out in the industry. The recommended security algorithms are sorted by priority as follows. The algorithms hav...

Emissary 加密问题漏洞

Emissary is a distributed P2P data-driven workflow framework open-sourced by the National Security Agency. An encryption issue vulnerability exists in versions of Emissary prior to 8.24.0 that stems from the use of insecure encryption algorithms resulting in a security risk...

GHSA-GMX7-GR5Q-85W5 magic-crypt uses insecure cryptographic algorithms

This crate uses a number of cryptographic algorithms that are no longer considered secure and it uses them in ways that do not guarantee the integrity of the encrypted data. MagicCrypt64 uses the insecure DES block cipher in CBC mode without authentication. This allows for practical brute force a...

magic-crypt uses insecure cryptographic algorithms

This crate uses a number of cryptographic algorithms that are no longer considered secure and it uses them in ways that do not guarantee the integrity of the encrypted data. MagicCrypt64 uses the insecure DES block cipher in CBC mode without authentication. This allows for practical brute force a...

Huawei Data Communication: Disabling Insecure Algorithms on the SSH Server/Client

Checks the algorithm configuration. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it...

IBM QRadar Incident Forensics Information Disclosure Vulnerability (CNVD-2018-25037)

IBM QRadar Incident Forensics is a suite of security forensic investigation software from IBM. The software supports in-depth forensic investigations of suspected malicious network security incidents, and the repair of network security vulnerabilities. A security vulnerability exists in IBM QRada...

Botan Information Disclosure Vulnerability

Botan is a library of cryptographic algorithms in the C++ programming language that supports AES, DES, SHA-1, RSA, DSA and Diffie-Hellman. A security vulnerability exists in Botan versions 1.11.29 through 1.11.32, which stems from the program's use of insecure cryptographic algorithms. An attacke...

Updated java-1.8.0-openjdk packages fix security vulnerability

It was discovered that the Hotspot component of OpenJDK did not properly check arguments of the System.arraycopy function in certain cases. An untrusted Java application or applet could use this flaw to corrupt virtual machine's memory and completely bypass Java sandbox restrictions CVE-2016-5582...

SSH Weak MAC Algorithms Enabled

The remote SSH server is configured to allow either MD5 or 96-bit MAC algorithms, both of which are considered weak. Note that this plugin only checks for the options of the SSH server, and it does not check for vulnerable software versions. C Tenable Network Security, Inc. include"compat.inc"; i...