CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CVE-2008-7272 affects FireGPG before 0.6. The issue arises from insecure handling of the user’s passphrase and decrypted cleartext, which are written to disk as pre-encrypted cleartext and the passphrase. This can lead to the compromise of secure communications or the user’s private key. The prov...

7.5CVSS7.4AI score0.00218EPSS

Exploits0References3Affected Software1

Debian CVE•added 2012/10/22 11:0 p.m.•14 views

CVE-2012-3466

GNOME gnome-keyring 3.4.0 through 3.4.1, when gpg-cache-method is set to "idle" or "timeout," does not properly limit the amount of time a passphrase is cached, which allows attackers to have an unspecified impact via unknown attack vectors...

4.4CVSS6.4AI score0.00067EPSS

Exploits1

CVE•added 2007/10/19 10:0 a.m.•39 views

CVE-2003-1389

The vulnerability concerns RTS CryptoBuddy 1.2 and earlier. It truncates long passphrases without warning, which may enable more effective brute‑force guessing attacks by reducing input length visibility. Impact is described as potentially facilitating such attacks with partial confidentiality ex...

7.5CVSS6.9AI score0.00365EPSS

Exploits0References3Affected Software1

NVD•added 2003/12/31 5:0 a.m.•9 views

CVE-2003-1391

RTS CryptoBuddy 1.0 and 1.2 uses a weak encryption algorithm for the passphrase and generates predictable keys, which makes it easier for attackers to guess the passphrase...

7.5CVSS6.5AI score0.00196EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by