239 matches found
CVE-2025-58720
Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally...
PT-2025-42058
Name of the Vulnerable Software and Affected Versions Windows Cryptographic Services affected versions not specified Description A risky implementation within a cryptographic primitive used by Windows Cryptographic Services can allow a local attacker to disclose information. Recommendations At th...
EUVD-2020-0471
Malware in sbrugna...
EUVD-2010-3480
Malware in sbrugna...
EUVD-2010-3481
Malware in sbrugna...
EUVD-2025-2778
Malicious code in bioql PyPI...
EUVD-2025-10123
Malicious code in bioql PyPI...
CVE-2025-58762 Tautulli vulnerable to Authenticated Remote Code Execution via write primitive and `Script` notification agent
Tautulli is a Python based monitoring and tracking tool for Plex Media Server. In Tautulli v2.15.3 and earlier, an attacker with administrative access can use the pmsimageproxy endpoint to write arbitrary python scripts into the application filesystem. This leads to remote code execution when...
Malicious code in primitive-affect-turn (npm)
The package primitive-affect-turn was found to contain malicious code...
MAL-2025-45590 Malicious code in primitive-affect-turn (npm)
The package primitive-affect-turn was found to contain malicious code...
CVE-2010-3483
cmswrite.php in Primitive CMS 1.0.9 does not properly restrict access, which allows remote attackers to gain administrative privileges via a direct request. NOTE: this vulnerability can be leveraged to conduct cross-site scripting attacks, as demonstrated using the 1 title, 2 content, and 3...
CVE-2019-15662
An issue was discovered in Rivet Killer Control Center before 2.1.1352. IOCTL 0x120444 in KfeCo10X64.sys fails to validate an offset passed as a parameter during a memory operation, leading to an arbitrary read primitive that can be used as part of a chain to escalate privileges...
CVE-2010-3482
Multiple SQL injection vulnerabilities in cmswrite.php in Primitive CMS 1.0.9 allow remote authenticated administrators to execute arbitrary SQL commands via the 1 title and 2 menutitle parameters. NOTE: this can be leveraged with CVE-2010-3483 to conduct attacks without authentication...
VulnCheck KEV: CVE-2025-2776
SysAid On-Prem contains an improper restriction of XML external entity reference vulnerability in the Server URL processing functionality, allowing for administrator account takeover and file read primitives...
SA2FE: a Secure, Anonymous, Auditable, and Fair Edge Computing Service Offloading Framework
The inclusion of pervasive computing devices in a democratized edge computing ecosystem can significantly expand the capability and coverage of near-end computing for large-scale applications. However, offloading user tasks to heterogeneous and decentralized edge devices comes with the dual risk ...
The vulnerability of Windows operating system-based Cryptographic Services allows attackers to disclose protected information.
The vulnerability of Windows operating system’s Cryptographic Services is related to the use of a cryptographic primitive with a risky implementation. Exploiting this vulnerability could allow an attacker to disclose the protected information...
CVE-2025-29808
Use of a cryptographic primitive with a risky implementation in Windows Cryptographic Services allows an authorized attacker to disclose information locally...
Use Of A Cryptographic Primitive With A Risky Implementation
postquantumfeldmanvss is vulnerable to Use of a Cryptographic Primitive with a Risky Implementation. The vulnerability is due to ineffective redundancy checks and timing leaks, allowing an attacker to bypass security mechanisms, extract secret polynomial coefficients, and manipulate commitment...
CVE-2025-22475
Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of a Cryptographic Primitive with a Risky Implementation vulnerability. A remote attacker could potentially exploit this vulnerability, leading to Information tampering...
CVE-2025-22475
Dell PowerProtect DD, versions prior to DDOS 8.3.0.0, 7.10.1.50, and 7.13.1.10 contains a use of a Cryptographic Primitive with a Risky Implementation vulnerability. A remote attacker could potentially exploit this vulnerability, leading to Information tampering...