Lucene search
K

239 matches found

OSV
OSV
added 2025/10/14 5:15 p.m.4 views

CVE-2025-58720

Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally...

7.8CVSS5.8AI score0.00188EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2025/10/14 12:0 a.m.6 views

PT-2025-42058

Name of the Vulnerable Software and Affected Versions Windows Cryptographic Services affected versions not specified Description A risky implementation within a cryptographic primitive used by Windows Cryptographic Services can allow a local attacker to disclose information. Recommendations At th...

7.8CVSS8.7AI score0.00188EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2020-0471

Malware in sbrugna...

7.5CVSS6.4AI score0.04928EPSS
Exploits0References17
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-3480

Malware in sbrugna...

6.5CVSS6.4AI score0.00921EPSS
Exploits1References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.6 views

EUVD-2010-3481

Malware in sbrugna...

7.5CVSS6.2AI score0.02345EPSS
Exploits1References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-2778

Malicious code in bioql PyPI...

7.5CVSS6.6AI score0.00222EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2025-10123

Malicious code in bioql PyPI...

5.5CVSS8.4AI score0.00406EPSS
Exploits0References2
Cvelist
Cvelist
added 2025/09/09 8:8 p.m.22 views

CVE-2025-58762 Tautulli vulnerable to Authenticated Remote Code Execution via write primitive and `Script` notification agent

Tautulli is a Python based monitoring and tracking tool for Plex Media Server. In Tautulli v2.15.3 and earlier, an attacker with administrative access can use the pmsimageproxy endpoint to write arbitrary python scripts into the application filesystem. This leads to remote code execution when...

9.1CVSS0.00765EPSS
Exploits1References2
OSSF Malicious Packages
OSSF Malicious Packages
added 2025/09/05 5:10 p.m.4 views

Malicious code in primitive-affect-turn (npm)

The package primitive-affect-turn was found to contain malicious code...

7AI score
Exploits0
OSV
OSV
added 2025/09/05 5:10 p.m.4 views

MAL-2025-45590 Malicious code in primitive-affect-turn (npm)

The package primitive-affect-turn was found to contain malicious code...

7AI score
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 12:42 p.m.6 views

CVE-2010-3483

cmswrite.php in Primitive CMS 1.0.9 does not properly restrict access, which allows remote attackers to gain administrative privileges via a direct request. NOTE: this vulnerability can be leveraged to conduct cross-site scripting attacks, as demonstrated using the 1 title, 2 content, and 3...

7.5CVSS6.5AI score0.02345EPSS
Exploits1References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:18 a.m.8 views

CVE-2019-15662

An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120444 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an arbitrary read primitive that can be used as part of a chain to escalate privileges...

4CVSS7AI score0.00936EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 4:37 a.m.8 views

CVE-2010-3482

Multiple SQL injection vulnerabilities in cmswrite.php in Primitive CMS 1.0.9 allow remote authenticated administrators to execute arbitrary SQL commands via the 1 title and 2 menutitle parameters. NOTE: this can be leveraged with CVE-2010-3483 to conduct attacks without authentication...

7.5CVSS8.4AI score0.02345EPSS
Exploits2References1
VulnCheck KEV
VulnCheck KEV
added 2025/05/14 12:0 a.m.2 views

VulnCheck KEV: CVE-2025-2776

SysAid On-Prem contains an improper restriction of XML external entity reference vulnerability in the Server URL processing functionality, allowing for administrator account takeover and file read primitives...

9.8CVSS5.8AI score0.72971EPSS
Exploits2References1
Packet Storm News
Packet Storm News
added 2025/04/28 12:0 a.m.3 views

SA2FE: a Secure, Anonymous, Auditable, and Fair Edge Computing Service Offloading Framework

The inclusion of pervasive computing devices in a democratized edge computing ecosystem can significantly expand the capability and coverage of near-end computing for large-scale applications. However, offloading user tasks to heterogeneous and decentralized edge devices comes with the dual risk ...

6.5AI score
Exploits0
BDU FSTEC
BDU FSTEC
added 2025/04/10 12:0 a.m.8 views

The vulnerability of Windows operating system-based Cryptographic Services allows attackers to disclose protected information.

The vulnerability of Windows operating system’s Cryptographic Services is related to the use of a cryptographic primitive with a risky implementation. Exploiting this vulnerability could allow an attacker to disclose the protected information...

5.5CVSS7.5AI score0.00406EPSS
Exploits0References2
OSV
OSV
added 2025/04/08 6:16 p.m.3 views

CVE-2025-29808

Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally...

5.5CVSS7.2AI score0.00406EPSS
Exploits0References1
Veracode
Veracode
added 2025/03/19 4:15 a.m.9 views

Use Of A Cryptographic Primitive With A Risky Implementation

postquantumfeldmanvss is vulnerable to Use of a Cryptographic Primitive with a Risky Implementation. The vulnerability is due to ineffective redundancy checks and timing leaks, allowing an attacker to bypass security mechanisms, extract secret polynomial coefficients, and manipulate commitment...

5.4CVSS6.8AI score0.00178EPSS
Exploits0References5Affected Software1
OSV
OSV
added 2025/02/04 3:15 a.m.3 views

CVE-2025-22475

Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of a Cryptographic Primitive with a Risky Implementation vulnerability. A remote attacker could potentially exploit this vulnerability, leading to Information tampering...

7.5CVSS5.8AI score0.00222EPSS
Exploits0References1
NVD
NVD
added 2025/02/04 3:15 a.m.22 views

CVE-2025-22475

Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of a Cryptographic Primitive with a Risky Implementation vulnerability. A remote attacker could potentially exploit this vulnerability, leading to Information tampering...

7.5CVSS0.00222EPSS
Exploits0References1
Rows per page
Query Builder