CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

An issue in TPLink Smart Bulb Tapo series L530 before 1.2.4, L510E before 1.1.0, L630 before 1.0.4, P100 before 1.5.0, and Tapo Application 2.8.14 allows a remote attacker to replay old messages encrypted with a still valid session key...

7.5CVSS7AI score0.00308EPSS

Exploits0References1

RedhatCVE•added 2025/05/23 12:8 a.m.•5 views

CVE-2022-25922

Power Line Communications PLC4TRUCKS J2497 trailer brake controllers implement diagnostic functions which can be invoked by replaying J2497 messages. There is no authentication or authorization for these functions...

9.1CVSS7.2AI score0.00207EPSS

Exploits0References1

UbuntuCve•added 2024/10/09 6:15 a.m.•12 views

CVE-2023-36325

i2p before 2.3.0 Java allows de-anonymizing the public IPv4 and IPv6 addresses of i2p hidden services aka eepsites via a correlation attack across the IPv4 and IPv6 addresses that occurs when a tunneled, replayed message has a behavior discrepancy it may be dropped, or may result in a Wrong...

3.7CVSS5.8AI score0.00308EPSS

Exploits0References3

Debian CVE•added 2024/10/09 12:0 a.m.•23 views

CVE-2023-36325

Removed by vendor...

3.7CVSS6.9AI score0.00308EPSS

Exploits0

Gitee•added 2024/10/02 3:53 p.m.•76 views

aflnet_profuzzbench

It is an offensive tool for network protocols. The primary CVE ID is not present in the provided context, but the tool is an extension of American Fuzzy Lop AFL, which is a greybox fuzzer for protocol implementations. The tool, AFLNet, is seeded with a corpus of recorded message exchanges between...

6.7AI score

Exploits0

OSV•added 2024/06/06 10:15 p.m.•2 views

CVE-2024-4013

A bug exists in the API, meshnodepoweroff, which fails to copy the contents of the Replay Protection List RPL from RAM to NVM before powering down, resulting in the ability to replay unsaved messages. Note that as of June 2024, the Gecko SDK was renamed to the Simplicity SDK, and the versioning...

5.6CVSS5.8AI score0.00175EPSS

Exploits0References2

Prion•added 2023/04/21 6:15 p.m.•18 views

Design/Logic Flaw

An issue was discovered in IO FinNet tss-lib before 2.0.0. The parameter ssid for defining a session id is not used through the MPC implementation, which makes replaying and spoofing of messages easier. In particular, the Schnorr proof of knowledge implemented in sch.go does not utilize a session...

3.6CVSS6.5AI score0.001EPSS

Exploits0References2Affected Software1

Vulnrichment•added 2023/04/21 12:0 a.m.•7 views

CVE-2022-47930

6.5AI score0.001EPSS

Exploits0References2

Gitee•added 2021/10/23 11:46 p.m.•3 views

aflnet

It is an offensive tool for network protocols. The primary CVE ID is not explicitly stated in the provided context, but the tool is mentioned in a research paper that was accepted for publication at the IEEE International Conference on Software Testing, Verification and Validation ICST 2020. The...

6.8AI score

Exploits0

Prion•added 2020/08/21 7:15 p.m.•13 views

Design/Logic Flaw

A nonce reuse vulnerability exists in the ACEView service of ALEOS before 4.13.0, 4.9.5, and 4.4.9 allowing message replay. Captured traffic to the ACEView service can be replayed to other gateways sharing the same credentials...

5.5CVSS4.4AI score0.00021EPSS

Exploits0References1Affected Software1

Cvelist•added 2020/08/21 6:49 p.m.•10 views

CVE-2019-11856 ALEOS ACEView Message Replay

3.3CVSS4.3AI score0.00021EPSS

Exploits0References1

CVE•added 2020/08/21 6:49 p.m.•53 views

CVE-2019-11856

The CVE-2019-11856 entry covers a nonce-reuse vulnerability in the ACEView service of ALEOS prior to versions 4.13.0, 4.9.5, and 4.4.9. The issue allows replay of captured ACEView traffic to other gateways sharing the same credentials, enabling message replay. Affected component: ACEView service ...

5.5CVSS4AI score0.00021EPSS

Exploits0References1Affected Software1

NVD•added 2019/06/04 7:29 p.m.•10 views

CVE-2019-5307

Some Huawei 4G LTE devices, P30 versions before ELE-AL00 9.1.0.162C01E160R1P12/C01E160R2P1 and P30 Pro versions before VOG-AL00 9.1.0.162C01E160R1P12/C01E160R2P1, are exposed to a message replay vulnerability. For the sake of better compatibility, these devices implement a less strict check on th...

4.3CVSS4.5AI score0.0003EPSS

Exploits0References1

Prion•added 2019/06/04 7:29 p.m.•12 views

Design/Logic Flaw

4.3CVSS4.5AI score0.0003EPSS

Exploits0References1Affected Software2

Cvelist•added 2019/06/04 6:55 p.m.•13 views

CVE-2019-5307

4.5AI score0.0003EPSS

Exploits0References1

Rows per page