Lucene search
K

58 matches found

Cvelist
Cvelist
added 6 days ago35 views

CVE-2026-42505 Invoking Encrypted Client Hello privacy leak in crypto/tls

Handshakes which used Encrypted Client Hello could be de-anonymized by a passive network observer due to a disclosure of pre-shared key identities in the unencrypted client hello...

0.00419EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2026/07/07 12:0 a.m.8 views

PT-2026-56479

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description Handshakes using Encrypted Client Hello ECH, a mechanism designed to encrypt the initial handshake of a TLS connection to protect client privacy, could be...

5.3CVSS6.1AI score0.00419EPSS
Exploits0References28
EUVD
EUVD
added 2026/07/02 4:6 p.m.7 views

EUVD-2026-41412

The Erlang/OTP ssl application does not validate that the PSK identity list and binder list carried in a TLS 1.3 ClientHello pre-shared key extension have equal length before passing them to the session ticket handler. In tlshandshake13:handlepresharedkey/3, an OfferedPreSharedKeys record with a...

8.2CVSS5.9AI score0.00487EPSS
Exploits0References7
OSV
OSV
added 2026/05/19 9:43 a.m.11 views

CLSA-2026-1779183792 gnutls: Fix of CVE-2026-42010

CVE-2026-42010: server-side RSA-PSK authentication bypass via NUL-byte truncation of binary PSK identities in gnutlsprocrsapskclientkx...

9.8CVSS5.8AI score0.0105EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/04/17 12:0 a.m.9 views

OpenFGA 安全漏洞

OpenFGA is an open-source authorization/licensing engine built for developers, inspired by Google Zanzibar. Versions of OpenFGA from 0.1.4 to 1.13.1 contain security vulnerabilities. These vulnerabilities stem from the fact that the playground endpoint responses include pre-shared API keys, which...

6.5CVSS5.8AI score0.00286EPSS
Exploits0References1
Packet Storm
Packet Storm
added 2026/02/16 12:0 a.m.274 views

📄 FortiGate Advanced Symlink Bypass Exploit

This Python script is an advanced exploitation tool targeting vulnerable FortiGate devices manufactured by Fortinet. It attempts to exploit a symlink/path bypass vulnerability via the /lang//custom/ endpoint in order to access sensitive internal files that should not be publicly accessible...

5.9CVSS5.6AI score0.00477EPSS
Exploits1
OSV
OSV
added 2026/01/20 9:16 p.m.6 views

UBUNTU-CVE-2026-21637

A flaw in Node.js TLS error handling allows remote attackers to crash or exhaust resources of a TLS server when pskCallback or ALPNCallback are in use. Synchronous exceptions thrown during these callbacks bypass standard TLS error handling paths tlsClientError and error, causing either immediate...

7.5CVSS7.2AI score0.01056EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/11/21 10:4 p.m.14 views

CVE-2025-11935 Forward Secrecy Violation in WolfSSL TLS 1.3

With TLS 1.3 pre-shared key PSK a malicious or faulty server could ignore the request for PFS perfect forward secrecy and the client would continue on with the connection using PSK without PFS. This happened when a server responded to a ClientHello containing pskdheke without a keyshare...

6.3CVSS0.00204EPSS
Exploits0References2
CNNVD
CNNVD
added 2025/11/21 12:0 a.m.4 views

wolfSSL 安全漏洞

wolfSSL CyaSSL is a small, portable embedded SSL programming library for use by embedded systems developers from wolfSSL, Inc. in the United States. A security vulnerability exists in wolfSSL CyaSSL, which stems from the fact that TLS 1.3 pre-shared keys may ignore PFS requests, potentially...

7.5CVSS6.5AI score0.00204EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2001-0373

Malware in sbrugna...

7.5CVSS6.4AI score0.01351EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.4 views

EUVD-2015-4194

Malware in sbrugna...

2.6CVSS8.2AI score0.02028EPSS
Exploits0References15
EUVD
EUVD
added 2025/10/07 12:30 a.m.8 views

EUVD-2016-8807

Malware in sbrugna...

4.7CVSS4.9AI score0.00297EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2009-0369

Malware in sbrugna...

4.6CVSS8.3AI score0.00785EPSS
Exploits2References26
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-22097

Malicious code in bioql PyPI...

7.3CVSS6.6AI score0.00288EPSS
Exploits0References3
OSV
OSV
added 2025/07/21 4:15 p.m.4 views

CVE-2025-44647

In TRENDnet TEW-WLC100P 2.03b03, the idontcareaboutsecurityanduseaggressivemodepsk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK...

7.3CVSS5.8AI score0.00288EPSS
Exploits0References3
NVD
NVD
added 2025/07/21 4:15 p.m.7 views

CVE-2025-44647

In TRENDnet TEW-WLC100P 2.03b03, the idontcareaboutsecurityanduseaggressivemodepsk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK...

7.3CVSS0.00288EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/07/21 12:0 a.m.9 views

CVE-2025-44647

In TRENDnet TEW-WLC100P 2.03b03, the idontcareaboutsecurityanduseaggressivemodepsk option is enabled in the strongSwan configuration file, so that IKE Responders are allowed to use IKEv1 Aggressive Mode with Pre-Shared Keys to conduct offline attacks on the openly transmitted hash of the PSK...

0.00288EPSS
Exploits0References2
RedhatCVE
RedhatCVE
added 2025/05/23 9:52 a.m.10 views

CVE-2024-25730

Hitron CODA-4582 and CODA-4589 devices have default PSKs that are generated from 5-digit hex values concatenated with a "Hitron" substring, resulting in insufficient entropy only about one million possibilities...

9.8CVSS7AI score0.00864EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 11:50 p.m.7 views

CVE-2022-22703

In Stormshield SSO Agent 2.x before 2.1.1 and 3.x before 3.0.2, the cleartext user password and PSK are contained in the log file of the .exe installer...

5.5CVSS7AI score0.00236EPSS
Exploits0References1
OSV
OSV
added 2024/07/16 5:15 p.m.4 views

CVE-2024-6326

An exposure of sensitive information vulnerability exists in the Rockwell Automation FactoryTalk® System Service. A malicious user could exploit this vulnerability by starting a back-up or restore process, which temporarily exposes private keys, passwords, pre-shared keys, and database folders wh...

5.5CVSS5.8AI score0.00176EPSS
Exploits0References1
Rows per page
Query Builder