13 matches found
EUVD-2017-17184
Malware in sbrugna...
EUVD-2020-17923
Malware in sbrugna...
EUVD-2015-8438
Malware in sbrugna...
CVE-2020-25233
A vulnerability has been identified in LOGO! 8 BM incl. SIPLUS variants All versions V8.3. The firmware update of affected devices contains the private RSA key that is used as a basis for encryption of communication with the device...
Siemens LOGO! 8 BM Use of Hard-Coded Cryptographic Key (CVE-2020-25233)
A vulnerability has been identified in LOGO! 8 BM incl. SIPLUS variants All versions V8.3. The firmware update of affected devices contains the private RSA key that is used as a basis for encryption of communication with the device. This plugin only works with Tenable.ot. Please visit...
Mbed TLS 加密问题漏洞
Mbed TLS is an open source, portable, easy to use, readable and flexible SSL library. A security vulnerability exists in Mbed TLS versions prior to 3.0.0, which stems from the use of a dangerous cryptographic algorithm in the mbedtlsmpiexpmod function of lignum.c. The vulnerability is caused by t...
CVE-2020-25233
A vulnerability has been identified in LOGO! 8 BM incl. SIPLUS variants All versions V8.3. The firmware update of affected devices contains the private RSA key that is used as a basis for encryption of communication with the device...
Design/Logic Flaw
A vulnerability has been identified in LOGO! 8 BM incl. SIPLUS variants All versions V8.3. The firmware update of affected devices contains the private RSA key that is used as a basis for encryption of communication with the device...
VulnCheck KEV: CVE-2017-8222
Wireless IP Camera P2P WIFICAM devices have an "Apple Production IOS Push Services" private RSA key and certificate stored in /system/www/pem/ck.pem inside the firmware, which allows attackers to obtain sensitive information...
Cache Side-Channel Attack
libgcrypt.so is vulnerable to cache side-channel attack. The attack is possible when an attacker can run arbitrary software on the hardware where the private RSA key is used...
Information disclosure
Wireless IP Camera P2P WIFICAM devices have an "Apple Production IOS Push Services" private RSA key and certificate stored in /system/www/pem/ck.pem inside the firmware, which allows attackers to obtain sensitive information...
MOPB-15-2007:PHP shmop Functions Resource Verification Vulnerability
Summary The shared memory shmop functions fail to verify the type of the resource that is used when they are called from PHP. Therefore it is possible to call them with a wrong resource type that might contain user supplied data. By for example using a special prepared GD Image resource it is...
Easy File Sharing Web Server 4 - Remote Information Stealer
Easy File Sharing Web Server 4 - Remote Information Stealer / =================================================================== 0-day Alternative File Stream Exploit for Easy File Share Server 4 =================================================================== Exploit allows malicious users t...