Lucene search
K

6 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2022-0551

Malicious code in bioql PyPI...

9.8CVSS9AI score0.02541EPSS
Exploits0References2
Packet Storm News
Packet Storm News
added 2025/08/15 12:0 a.m.3 views

Pushing the Limits of Frequency Analysis in Leakage Abuse Attacks

Searchable encryption SE is the most scalable cryptographic primitive for searching on encrypted data. Typical SE constructions often allow access-pattern leakage, revealing which encrypted records are retrieved in the server's responses. All the known generic cryptanalyses assume either that the...

6.8AI score
Exploits0
The Hacker News
The Hacker News
added 2020/04/28 8:19 a.m.60 views

Researchers Uncover Novel Way to De-anonymize Device IDs to Users' Biometrics

Researchers have uncovered a potential means to profile and track online users using a novel approach that combines device identifiers with their biometric information. The details come from a newly published research titled "Nowhere to Hide: Cross-modal Identity Leakage between Biometrics and...

0.8AI score
Exploits0
CVE
CVE
added 2020/04/15 3:13 p.m.94 views

CVE-2020-1026

The CVE-2020-1026 issue affects the MSR JavaScript Cryptography Library’s ECC implementation. It results from multiple bugs in ECC code, enabling an attacker to potentially leak a server’s private ECC key (key leakage attack) or craft an invalid ECDSA signature that passes as valid. The vulnerabi...

9.8CVSS9AI score0.02541EPSS
Exploits0References1Affected Software1
Microsoft CVE
Microsoft CVE
added 2020/04/14 7:0 a.m.29 views

MSR JavaScript Cryptography Library Security Feature Bypass Vulnerability

A Security Feature Bypass vulnerability exists in the MSR JavaScript Cryptography Library that is caused by multiple bugs in the library’s Elliptic Curve Cryptography ECC implementation. An attacker could potentially abuse these bugs to learn information about a server’s private ECC key a key...

9.8CVSS1.7AI score0.02541EPSS
Exploits0
OSV
OSV
added 2018/08/06 2:29 p.m.2 views

CVE-2017-1368

IBM Security Identity Governance Virtual Appliance 5.2 through 5.2.3.2 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie...

6.5CVSS5.6AI score0.01278EPSS
Exploits0References2
Rows per page
Query Builder