Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Missing Cryptographic Step in Data Modem
Unauthenticated/unencrypted trailing bytes with low-level OCB function calls
Deno node:crypto doesn't finalize cipher
Windows Kerberos Elevation of Privilege Vulnerability
The Bastion ttyrec files are not signed after encryption by the osh-encrypt-rsync script
frost-core: refresh shares with smaller min_signers will reduce group security
In MbedTLS 3
RLPx 5 has two CTR streams based on the same key, IV, and nonce
fossasia open-event-server Mail Verification mail.py send_email_change_user_email reliance on obfuscation or encryption of security-relevant inputs...
Missing Cryptographic Step
ALTBN128_ADD, ALTBN128_MUL, ALTBN128_PAIRING precompile functions do not check if points are on curve
sigstore-python has insufficient validation of integration timestamp during verification
Cisco Touch 10 Device Insufficient Identity Verification Vulnerability
Windows Kerberos Information Disclosure Vulnerability
Cryptographic issues with In-Meeting Chat for some Zoom clients may allow a privileged user to conduct an information disclosure via network access
xkeys Seal encryption used fixed key for all encryption
uthenticode EKU validation bypass
Missing Cryptographic Step
Exposure of information intended to be encrypted by some Zoom clients may lead to disclosure of sensitive information
Nextcloud: Lack of authenticity of metadata keys allows a malicious server to gain access to E2EE folders
Showing 1 - 20 of 1,000+ results