Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
AES-GCM streaming APIs do not reject >64 GiB cumulative single messages, enabling counter wrap and keystream reuse
Crypt::DSA versions before 1.21 for Perl reused the nonce across signatures, leading to private-key recovery
Discuz! X5.0 Authentication Bypass via dbbak.php Encryption Oracle
Astro: Server island encrypted parameters vulnerable to cross-component replay
wolfSSL ARIA-GCM TLS 1.2/DTLS 1.2 GCM nonce reuse
Philips Hue Bridge HomeKit Accessory Protocol Static Nonce Authentication Bypass Vulnerability
Libsoup: libsoup: authentication bypass via digest authentication replay attack
RustDesk Encrypts Local Passwords with World-Readable Machine ID and Fixed Zero Nonce (XSalsa20-Poly1305)
strongMan vulnerable to private credential recovery due to key and counter reuse
Reusing a Nonce, Key Pair in Encryption in Automotive Platform
Johnson Controls IQ Panels2, 2+, IQHub, IQPanel 4, PowerG reusing a nonce, key pair in encryption
hpke-js reuses AEAD nonces
SICK InspectorP61x and SICK InspectorP62x are vulnerable for a replay attack
Versions of the package cocoon before 0
PheonixAppAPI has visible Encoding Maps
netty-incubator-codec-ohttp's BoringSSLAEADContext Repeats Nonces
CVE-2023-7003
Consensys Discovery Nonce Reuse
Keystream recovery for arbitrary frames in TETRA
Vault's Transit Secrets Engine Allowed Nonce Specified without Convergent Encryption
Showing 1 - 20 of 1,000+ results