Lucene search
+L

189 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-40691

Malicious code in bioql PyPI...

6.8CVSS6.9AI score0.00243EPSS
Exploits0References1
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-39126

Malicious code in bioql PyPI...

7.5CVSS7.5AI score0.00157EPSS
Exploits0References1
OSV
OSV
added 2025/09/15 12:33 p.m.2 views

SUSE-SU-2025:03227-1 Security update for krb5

This update for krb5 fixes the following issues: - CVE-2025-3576: weakness in the MD5 checksum design allows for spoofing of GSSAPI-protected messages that are using RC4-HMAC-MD5 bsc1241219. Krb5, as a very old protocol, supported quite a number of ciphers that are not longer up to current...

5.9CVSS7AI score0.00331EPSS
Exploits0References3
OSV
OSV
added 2025/05/28 2:41 p.m.3 views

USN-7542-1 krb5 vulnerability

It was discovered that Kerberos allowed the usage of weak cryptographic standards. An attacker could possibly use this issue to expose sensitive information. This update introduces the allowrc4 and allowdes3 configuration options, and disables the usage of RC4 and 3DES ciphers by default. Users a...

5.9CVSS6.9AI score0.00331EPSS
Exploits0References2
Ubuntu
Ubuntu
added 2025/05/28 2:41 p.m.10 views

USN-7542-1: Kerberos vulnerability

It was discovered that Kerberos allowed the usage of weak cryptographic standards. An attacker could possibly use this issue to expose sensitive information. This update introduces the allowrc4 and allowdes3 configuration options, and disables the usage of RC4 and 3DES ciphers by default. Users a...

5.9CVSS6.9AI score0.00331EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 5:3 a.m.9 views

CVE-2023-36748

A vulnerability has been identified in RUGGEDCOM ROX MX5000 All versions V2.16.0, RUGGEDCOM ROX MX5000RE All versions V2.16.0, RUGGEDCOM ROX RX1400 All versions V2.16.0, RUGGEDCOM ROX RX1500 All versions V2.16.0, RUGGEDCOM ROX RX1501 All versions V2.16.0, RUGGEDCOM ROX RX1510 All versions V2.16.0...

6.8CVSS6.4AI score0.00243EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/23 12:28 a.m.9 views

CVE-2022-48193

Weak ciphers in Softing smartLink SW-HT before 1.30 are enabled during secure communication SSL...

7.5CVSS7AI score0.0027EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 9:19 p.m.7 views

CVE-2021-32496

SICK Visionary-S CX up version 5.21.2.29154R are vulnerable to an Inadequate Encryption Strength vulnerability concerning the internal SSH interface solely used by SICK for recovering returned devices. The use of weak ciphers make it easier for an attacker to break the security that protects...

5.3CVSS6.6AI score0.00264EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:24 p.m.8 views

CVE-2020-11487

NVIDIA DGX servers, DGX-1 with BMC firmware versions prior to 3.38.30. DGX-2 with BMC firmware versions prior to 1.06.06 and all DGX A100 Servers with all BMC firmware versions, contains a vulnerability in the AMI BMC firmware in which the use of a hard-coded RSA 1024 key with weak ciphers may le...

7.5CVSS7.3AI score0.01258EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/05/22 5:2 p.m.5 views

CVE-2020-36363

Amazon AWS CloudFront TLSv1.22019 allows TLSECDHERSAWITHAES128CBCSHA256 and TLSECDHERSAWITHAES256CBCSHA384, which some entities consider to be weak ciphers...

9.8CVSS6.9AI score0.00706EPSS
Exploits0
RedhatCVE
RedhatCVE
added 2025/05/22 8:14 a.m.7 views

CVE-2019-14332

An issue was discovered on D-Link 6600-AP and DWL-3600AP Ax 4.2.0.14 21/03/2019 devices. There is use of weak ciphers for SSH such as diffie-hellman-group1-sha1...

7.8CVSS6.9AI score0.01366EPSS
Exploits3References1
Broadcom
Broadcom
added 2025/02/13 12:0 a.m.10 views

Weak TLS Ciphers on Brocade SANnav port 443 & 18082. (CVE-2024-10405)

Brocade SANnav before SANnav 2.3.1b enables weak TLS ciphers on ports 443 and 18082. In case of a successful exploit, an attacker can read Brocade SANnav data stream that includes monitored Brocade Fabric OS switches performance data, port status, zoninginformation, WWNs, IP Addresses, but no...

6.9CVSS6.8AI score0.00192EPSS
Exploits0
OSV
OSV
added 2024/08/13 8:15 a.m.3 views

CVE-2024-41681

A vulnerability has been identified in Location Intelligence family All versions V4.4. The web server of affected products is configured to support weak ciphers by default. This could allow an unauthenticated attacker in an on-path position to to read and modify any data passed over the connectio...

7.5CVSS5.7AI score0.00157EPSS
Exploits0References1
NVD
NVD
added 2024/08/13 8:15 a.m.23 views

CVE-2024-41681

A vulnerability has been identified in Location Intelligence family All versions V4.4. The web server of affected products is configured to support weak ciphers by default. This could allow an unauthenticated attacker in an on-path position to to read and modify any data passed over the connectio...

7.5CVSS0.00157EPSS
Exploits0References1
CVE
CVE
added 2024/08/13 7:54 a.m.54 views

CVE-2024-41681

Siemens Location Intelligence (web-based Location Intelligence) is affected for all versions before V4.4. The root issue is that the web server is configured to support weak ciphers by default, enabling an on-path attacker in an adjacent network position to read and modify data between clients an...

7.5CVSS6.8AI score0.00157EPSS
Exploits0References1Affected Software1
Cvelist
Cvelist
added 2024/08/13 7:54 a.m.33 views

CVE-2024-41681

A vulnerability has been identified in Location Intelligence family All versions V4.4. The web server of affected products is configured to support weak ciphers by default. This could allow an unauthenticated attacker in an on-path position to to read and modify any data passed over the connectio...

6.7CVSS0.00157EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/08/13 7:54 a.m.15 views

CVE-2024-41681

A vulnerability has been identified in Location Intelligence family All versions V4.4. The web server of affected products is configured to support weak ciphers by default. This could allow an unauthenticated attacker in an on-path position to to read and modify any data passed over the connectio...

6.7CVSS6.8AI score0.00157EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2024/08/13 12:0 a.m.9 views

PT-2024-7640 · Unknown · Location Intelligence

Name of the Vulnerable Software and Affected Versions: Location Intelligence versions prior to V4.4 Description: The issue is related to insufficiently strong data encryption. This could allow an unauthenticated attacker in an on-path position to read and modify any data passed over the connectio...

7.5CVSS7.2AI score0.00157EPSS
Exploits0References7
NVD
NVD
added 2024/07/09 12:15 p.m.11 views

CVE-2024-38867

A vulnerability has been identified in SIPROTEC 5 6MD84 CP300 All versions V9.64, SIPROTEC 5 6MD85 CP200 All versions, SIPROTEC 5 6MD85 CP300 All versions V9.64, SIPROTEC 5 6MD86 CP200 All versions, SIPROTEC 5 6MD86 CP300 All versions V9.64, SIPROTEC 5 6MD89 CP300 All versions V9.64, SIPROTEC 5...

8.2CVSS0.00205EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/07/09 12:5 p.m.8 views

CVE-2024-38867

A vulnerability has been identified in SIPROTEC 5 6MD84 CP300 All versions V9.64, SIPROTEC 5 6MD85 CP200 All versions, SIPROTEC 5 6MD85 CP300 All versions V9.64, SIPROTEC 5 6MD86 CP200 All versions, SIPROTEC 5 6MD86 CP300 All versions V9.64, SIPROTEC 5 6MD89 CP300 All versions V9.64, SIPROTEC 5...

8.2CVSS7.2AI score0.00205EPSS
Exploits0References1
Rows per page
Query Builder