Lucene search
K

11 matches found

OSV
OSV
added 2025/08/29 4:15 p.m.5 views

CVE-2024-46916

Diebold Nixdorf Vynamic Security Suite through 4.3.0 SR06 contains functionality that allows the removal of critical system files before the filesystem is properly mounted e.g., leveraging a delete call in /etc/rc.d/init.d/mountfs to remove the /etc/fstab file. This can allow code execution and, ...

8.1CVSS6.2AI score0.00343EPSS
Exploits1References3
Debian CVE
Debian CVE
added 2018/08/01 1:0 p.m.38 views

CVE-2016-8635

It was found that Diffie Hellman Client key exchange handling in NSS 3.21.x was vulnerable to small subgroup confinement attack. An attacker could use this flaw to recover private keys by confining the client DH key to small subgroup of the desired group...

5.9CVSS6.8AI score0.02015EPSS
Exploits0
IBM Security Bulletins
IBM Security Bulletins
added 2018/06/15 7:5 a.m.44 views

Security Bulletin: Vulnerabilities in OpenSSL affect IBM Image Construction and Composition Tool. (CVE-2016-0705, CVE-2016-0798, CVE-2016-0797, CVE-2016-0799, CVE-2016-0702, and CVE-2016-0704)

Summary OpenSSL vulnerabilities were disclosed on March 1, 2016 by the OpenSSL Project. OpenSSL is used by IBM Image Construction and Composition Tool. IBM Image Construction and Composition Tool has addressed the applicable CVEs. Vulnerability Details CVEID: CVE-2016-0705 DESCRIPTION: OpenSSL is...

10CVSS1AI score0.32414EPSS
Exploits1Affected Software1
CNVD
CNVD
added 2017/10/10 12:0 a.m.8 views

Botan Design Vulnerability

Botan is a library of cryptographic algorithms in the C++ programming language that supports AES, DES, SHA-1, RSA, DSA and Diffie-Hellman. A security vulnerability exists in the RSA implementation in Botan versions prior to 1.10.17, 1.11.x and 2.x prior to 2.3.0. A local attacker can exploit this...

5.5CVSS6.9AI score0.00318EPSS
Exploits0References1
Talos Blog
Talos Blog
added 2017/06/23 12:55 p.m.36 views

Threat Round-up for June 16 - June 23

Today, Talos is publishing a glimpse into the most prevalent threats we've observed between June 16 and June 23. As with previous round-ups, this post isn't meant to be an in-depth analysis. Instead, this post will summarize the threats we've observed by highlighting key behavior characteristics,...

6.6AI score
Exploits0
Cloud Foundry
Cloud Foundry
added 2017/03/14 12:0 a.m.49 views

USN-3193-1: Nettle vulnerability | Cloud Foundry

Severity Medium Vendor Canonical Ubuntu Versions Affected Canonical Ubuntu 14.04 LTS Description It was discovered that Nettle incorrectly mitigated certain timing side-channel attacks. A remote attacker could possibly use this flaw to recover private keys. Affected Cloud Foundry Products and...

7.5CVSS7.5AI score0.05007EPSS
Exploits0
OSV
OSV
added 2017/02/06 6:48 p.m.1 views

USN-3193-1 nettle vulnerability

It was discovered that Nettle incorrectly mitigated certain timing side-channel attacks. A remote attacker could possibly use this flaw to recover private keys...

7.5CVSS7.2AI score0.05007EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2016/11/16 3:47 a.m.31 views

CVE-2016-8635

It was found that Diffie Hellman Client key exchange handling in NSS was vulnerable to small subgroup confinement attack. An attacker could use this flaw to recover private keys by confining the client DH key to small subgroup of the desired group...

5.9CVSS1.6AI score0.02015EPSS
Exploits0References1
Mageia
Mageia
added 2015/09/13 9:58 p.m.39 views

Updated libgcrypt packages fix CVE-2015-0837

Updated libgcrypt packages fix security vulnerability: Daniel Genkin, Adi Shamir, and Eran Tromer discovered that Libgcrypt was susceptible to an attack via physical side channels. A local attacker could use this attack to possibly recover private keys CVE-2015-0837...

5.9CVSS6.2AI score0.01952EPSS
Exploits0References2
Kitploit
Kitploit
added 2014/02/13 12:23 a.m.14 views

[Wi-Fi Password Dump] Command-line Tool to Recover Wireless Passwords

WiFi Password Dump is the free command-line tool to quickly recover all the Wireless account passwords stored on your system. It automatically recovers all type of Wireless Keys/Passwords WEP/WPA/WPA2 etc stored by Windows Wireless Configuration Manager. For each recovered WiFi account, it displa...

7AI score
Exploits0
NVD
NVD
added 2009/08/31 10:30 a.m.19 views

CVE-2008-7128

The sslparseclientkeyexchange function in XySSL before 0.9 does not protect against certain Bleichenbacher attacks using chosen ciphertext, which allows remote attackers to recover keys via unspecified vectors...

7.5CVSS6.7AI score0.0139EPSS
Exploits0References3
Rows per page
Query Builder