Browse and filter security vulnerabilities across ecosystems
Browse and filter security vulnerabilities across ecosystems
Silicon Labs Z-Wave PIR Sensor Joins Network as Non-Secure
psPAS does not enforce TLS 1.2 within Get-PASSAMLResponse
Dell NetWorker, versions 19
Protocol Downgrade in SIMPLE.ERP
Protocol Downgrade in Wapro ERP Desktop
In modem, there is a possible selection of less-secure algorithm during the VoWiFi IKE due to a missing DH downgrade check
Dex 2.37.0 is discarding TLSconfig and always serves deprecated TLS 1.0/1.1 and insecure ciphers
IBM Security Directory Suite information disclosure
Quarkus-core: tls protocol configured with quarkus.http.ssl.protocols is not enforced, client can enforce weaker supported tls protocol
Weak Default SSL use in Port Forwarding Service
The Z-Wave specification requires that S2 security can be downgraded to S0 or other less secure protocols, allowing an attacker within radio range ...
Dell EMC Streaming Data Platform, versions prior to 1
Philips Clinical Collaboration Platform Algorithm Downgrade
Bluetooth devices supporting BR/EDR v5.2 and earlier are vulnerable to impersonation attacks
A flaw was found when an OpenSSL security provider is used with Wildfly, the 'enabled-protocols' value in the Wildfly configuration isn't honored
downgrade of effective Strict Transport Security (STS) policy in postfix-mta-sts-resolver
eDirectory LDAP peer certificate validation issue
lack of keypinning in libzypp could lead to repository switching