Design/Logic Flaw

A CWE-327: Use of a Broken or Risky Cryptographic Algorithm vulnerability exists in Easergy T300 Firmware version 1.5.2 and older which could allow an attacker to acquire a password by brute force...

IBM WebSphere MQ for IBM i Password Acquisition Vulnerability

IBM WebSphere MQ is a messaging middleware product. A password acquisition vulnerability exists in the IBM WebSphere MQ mqcertck tool, which can be exploited by a local attacker to decrypt other MQ administrator passwords with administrator privileges...