Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2026/01/09 11:23 a.m.10 views

CVE-2021-31798

The effective key space used to encrypt the cache in CyberArk Credential Provider prior to 12.1 has low entropy, and under certain conditions a local malicious user can obtain the plaintext of cache files...

4.4CVSS6.6AI score0.00437EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/06/19 3:10 p.m.11 views

CVE-2025-52464 Meshtastic Repeated Public and Private Keypairs

Meshtastic is an open source mesh networking solution. In versions from 2.5.0 to before 2.6.11, the flashing procedure of several hardware vendors was resulting in duplicated public/private keys. Additionally, the Meshtastic was failing to properly initialize the internal randomness pool on some...

9.5CVSS0.00409EPSS
Exploits0References5
CVE
CVE
added 2025/06/19 3:10 p.m.93 views

CVE-2025-52464

Meshtastic versions 2.5.0–2.6.10 expose a vulnerability where flashing procedures can duplicate public/private keys and the RNG may have low entropy, allowing an attacker to decrypt Direct Messages after collecting compromised keys. This is caused by key generation timing and insufficient randomn...

9.5CVSS6.3AI score0.00409EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2020/09/11 2:15 p.m.4 views

UBUNTU-CVE-2020-15802

Devices supporting Bluetooth before 5.1 may allow man-in-the-middle attacks, aka BLURtooth. Cross Transport Key Derivation in Bluetooth Core Specification v4.2 and v5.0 may permit an unauthenticated user to establish a bonding with one transport, either LE or BR/EDR, and replace a bonding already...

5.9CVSS7AI score0.07137EPSS
Exploits1References6
Rows per page
Query Builder