12 matches found
EUVD-2022-2741
Malicious code in bioql PyPI...
CVE-2022-29249
JavaEZ is a library that adds new functions to make Java easier. A weakness in JavaEZ 1.6 allows force decryption of locked text by unauthorized actors. The issue is NOT critical for non-secure applications, however may be critical in a situation where the highest levels of security are required...
GHSA-67FJ-6W6M-W5J8 Reversible One-Way Hash in io.github.javaezlib:JavaEZ
Impact This weakness allows the force decryption of locked text by hackers. The issue is NOT critical for non-secure applications, however may be critical in a situation where the highest levels of security are required. This issue ONLY affects v1.6 and does not affect anything pre-1.6. Upgrading...
Weak Cryptography
io.github.javaezlib, JavaEZ is vulnerable to weak cryptography. The vulnerability exists in the unlockText function of Security.java due to weak encryption in the locked text which allows an unauthorized user to gain access to sensitive information in the system...
CVE-2022-29249
JavaEZ is a library that adds new functions to make Java easier. A weakness in JavaEZ 1.6 allows force decryption of locked text by unauthorized actors. The issue is NOT critical for non-secure applications, however may be critical in a situation where the highest levels of security are required...
Design/Logic Flaw
JavaEZ is a library that adds new functions to make Java easier. A weakness in JavaEZ 1.6 allows force decryption of locked text by unauthorized actors. The issue is NOT critical for non-secure applications, however may be critical in a situation where the highest levels of security are required...
CVE-2022-29249 Reversible One-Way Hash and Use of a Broken or Risky Cryptographic Algorithm in io.github.javaezlib.JavaEZ
JavaEZ is a library that adds new functions to make Java easier. A weakness in JavaEZ 1.6 allows force decryption of locked text by unauthorized actors. The issue is NOT critical for non-secure applications, however may be critical in a situation where the highest levels of security are required...
CVE-2022-29249
CVE-2022-29249 affects the JavaEZ library. The issue is limited to v1.6 and enables a force decryption of locked text due to weak cryptography in the unlock/decrypt flow. Pre-1.6 is unaffected. A fix is available in release 1.7; upgrading is the advised remediation. Public disclosures and advisor...
CVE-2022-29249 Reversible One-Way Hash and Use of a Broken or Risky Cryptographic Algorithm in io.github.javaezlib.JavaEZ
JavaEZ is a library that adds new functions to make Java easier. A weakness in JavaEZ 1.6 allows force decryption of locked text by unauthorized actors. The issue is NOT critical for non-secure applications, however may be critical in a situation where the highest levels of security are required...
CVE-2022-29249 Reversible One-Way Hash and Use of a Broken or Risky Cryptographic Algorithm in io.github.javaezlib.JavaEZ
JavaEZ is a library that adds new functions to make Java easier. A weakness in JavaEZ 1.6 allows force decryption of locked text by unauthorized actors. The issue is NOT critical for non-secure applications, however may be critical in a situation where the highest levels of security are required...
JavaEZ 加密问题漏洞
JavaEZ is a library. New functions have been added to make Java easier. A security vulnerability exists in JavaEZ version 1.6, which can be exploited by an unauthorized attacker to forcibly decrypt locked text...
PT-2022-19496 · Javaez · Javaez
Name of the Vulnerable Software and Affected Versions: JavaEZ version 1.6 Description: A weakness in JavaEZ allows force decryption of locked text by unauthorized actors. The issue may be critical in situations where the highest levels of security are required, but it is not critical for non-secu...