Lucene search
K

189 matches found

Positive Technologies
Positive Technologies
added 2026/01/28 12:0 a.m.9 views

PT-2026-5175

Explorance Blue versions prior to 8.14.12 use reversible symmetric encryption with a hardcoded static key to protect sensitive data, including user passwords and system configurations. This approach allows stored values to be decrypted offline if the encrypted data are obtained...

6.8CVSS5.9AI score0.00186EPSS
Exploits0References5
CNNVD
CNNVD
added 2026/01/28 12:0 a.m.8 views

Explorance Blue security vulnerabilities

Explorance Blue is a learning experience management software developed by the Canadian company Explorance. Versions of Explorance Blue prior to 8.14.12 contained security vulnerabilities. These vulnerabilities stemmed from the use of reversible symmetric encryption with hardcoded static keys to...

6.8CVSS5.8AI score0.00186EPSS
Exploits0References5
Vulnrichment
Vulnrichment
added 2026/01/09 11:5 a.m.4 views

CVE-2026-22080 Insecure Transmission Vulnerability in Tenda Wireless Routers

This vulnerability exists in Tenda wireless routers 300Mbps Wireless Router F3 and N300 Easy Setup Router due to the transmission of credentials encoded using reversible Base64 encoding through the web-based administrative interface. An attacker on the same network could exploit this vulnerabilit...

8.7CVSS6.4AI score0.00106EPSS
Exploits0References1
CNNVD
CNNVD
added 2026/01/09 12:0 a.m.5 views

Tenda N300和Tenda F3 安全漏洞

Tenda N300 and Tenda F3 are both products of Tenda, a Chinese company.Tenda N300 is a router.Tenda F3 is a wireless router. A security vulnerability exists in the Tenda N300 and Tenda F3 that originates from the transmission of credentials encoded using reversible Base64 encoding via a web-based...

8.7CVSS7AI score0.00106EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/12/16 2:49 p.m.5 views

CVE-2025-34180

NetSupport Manager 14.12.0001 relies on a shared Gateway Key for authentication between Manager/Control, Client, and Connectivity Server components. The key is stored using a reversible encoding scheme. An attacker who obtains access to a deployed client configuration file can decode the stored...

8.4CVSS7AI score0.00143EPSS
Exploits0References1
EUVD
EUVD
added 2025/12/15 3:30 p.m.5 views

EUVD-2025-203379

NetSupport Manager 14.12.0001 relies on a shared Gateway Key for authentication between Manager/Control, Client, and Connectivity Server components. The key is stored using a reversible encoding scheme. An attacker who obtains access to a deployed client configuration file can decode the stored...

8.4CVSS6.5AI score0.00143EPSS
Exploits0References5
NVD
NVD
added 2025/12/15 3:15 p.m.4 views

CVE-2025-34180

NetSupport Manager 14.12.0001 relies on a shared Gateway Key for authentication between Manager/Control, Client, and Connectivity Server components. The key is stored using a reversible encoding scheme. An attacker who obtains access to a deployed client configuration file can decode the stored...

8.4CVSS0.00143EPSS
Exploits0References3
Cvelist
Cvelist
added 2025/12/15 2:41 p.m.24 views

CVE-2025-34180 NetSupport Manager < 14.12.0001 Gateway Key Reversible Encoding Credential Recovery

NetSupport Manager 14.12.0001 relies on a shared Gateway Key for authentication between Manager/Control, Client, and Connectivity Server components. The key is stored using a reversible encoding scheme. An attacker who obtains access to a deployed client configuration file can decode the stored...

8.4CVSS0.00143EPSS
Exploits0References3
Vulnrichment
Vulnrichment
added 2025/12/15 2:41 p.m.2 views

CVE-2025-34180 NetSupport Manager < 14.12.0001 Gateway Key Reversible Encoding Credential Recovery

NetSupport Manager 14.12.0001 relies on a shared Gateway Key for authentication between Manager/Control, Client, and Connectivity Server components. The key is stored using a reversible encoding scheme. An attacker who obtains access to a deployed client configuration file can decode the stored...

8.4CVSS6.6AI score0.00143EPSS
Exploits0References3
CVE
CVE
added 2025/12/15 2:41 p.m.12 views

CVE-2025-34180

NetSupport Manager

8.4CVSS6.6AI score0.00143EPSS
Exploits0References3
CNNVD
CNNVD
added 2025/12/15 12:0 a.m.3 views

NetSupport Manager 安全漏洞

NetSupport Manager is a remote control software from NetSupport Manager, Inc. A security vulnerability exists in NetSupport Manager versions prior to 14.12.0001 that stems from the use of a reversible coding scheme to store a shared Gateway Key, which could lead to unauthorized access...

8.4CVSS6.7AI score0.00143EPSS
Exploits0References4
Positive Technologies
Positive Technologies
added 2025/12/15 12:0 a.m.5 views

PT-2025-51232

NetSupport Manager 14.12.0001 relies on a shared Gateway Key for authentication between Manager/Control, Client, and Connectivity Server components. The key is stored using a reversible encoding scheme. An attacker who obtains access to a deployed client configuration file can decode the stored...

8.4CVSS7AI score0.00143EPSS
Exploits0References3
RedhatCVE
RedhatCVE
added 2025/12/04 12:11 a.m.21 views

CVE-2025-65841

Aquarius Desktop 3.0.069 for macOS stores user authentication credentials in the local file /Library/Application Support/Aquarius/aquarius.settings using a weak obfuscation scheme. The password is "encrypted" through predictable byte-substitution that can be trivially reversed, allowing immediate...

6.2CVSS6.7AI score0.00182EPSS
Exploits1References1
CVE
CVE
added 2025/12/03 12:0 a.m.15 views

CVE-2025-65841

Summary of CVE-2025-65841 : Aquarius Desktop 3.0.069 for macOS stores user authentication credentials in a local file at ~/Library/Application Support/Aquarius/aquarius.settings using a weak obfuscation scheme. The password is “encrypted” via predictable byte-substitution that is trivially revers...

6.2CVSS6.3AI score0.00182EPSS
Exploits1References1Affected Software1
Packet Storm News
Packet Storm News
added 2025/11/06 12:0 a.m.5 views

Security Evaluation of Quantum Circuit Split Compilation under an Oracle-Guided Attack

Quantum circuits are the fundamental representation of quantum algorithms and constitute valuable intellectual property IP. Multiple quantum circuit obfuscation QCO techniques have been proposed in prior research to protect quantum circuit IP against malicious compilers. However, there has not be...

6.8AI score
Exploits0
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2015-7978

Malware in sbrugna...

4.9CVSS5.1AI score0.00489EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/07 12:30 a.m.7 views

EUVD-2017-14034

Malware in sbrugna...

9.8CVSS9.3AI score0.00842EPSS
Exploits0References4
EUVD
EUVD
added 2025/10/07 12:30 a.m.5 views

EUVD-2019-15297

Malware in sbrugna...

9.8CVSS9.5AI score0.01091EPSS
Exploits3References5
EUVD
EUVD
added 2025/10/03 8:7 p.m.3 views

EUVD-2024-32129

Malicious code in bioql PyPI...

7.5CVSS6.3AI score0.00379EPSS
Exploits0References3
EUVD
EUVD
added 2025/10/03 8:7 p.m.8 views

EUVD-2022-39321

Malicious code in bioql PyPI...

4.9CVSS5.4AI score0.00426EPSS
Exploits0References2
Rows per page
Query Builder