映射到 CWE-310,CWE-312,CWE-319,CWE-326 的搜索结果 (1841)

CVE-2018-5461(发布:2018-03-06 16:29:00)NM
CVSS5.8

[原文]An Inadequate Encryption Strength issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic Platform Switches. An inadequate encryption strength vulnerability in the web interface has been identified, which may allow an attacker to obtain sensitive information through a successful man-in-the-middle attack.

CVE-2018-6019(发布:2018-03-06 15:29:00)NM
CVSS4.3

[原文]Samsung Display Solutions App before 3.02 for Android allows man-in-the-middle attackers to spoof B2B content by leveraging failure to use encryption during information transmission.

CVE-2017-9267(发布:2018-03-02 15:29:00)NM
CVSS5.0

[原文]In Novell eDirectory before 9.0.3.1 the LDAP interface was not strictly enforcing cipher restrictions allowing weaker ciphers to be used during SSL BIND operations.

CVE-2018-6653(发布:2018-02-28 19:29:00)NM
CVSS5.0

[原文]comforte SWAP 1049 through 1069 and 20.0.0 through 21.5.3 (as used in SSLOBJ on HPE NonStop SSL T0910, and in the comforte SecurCS, SecurFTP, SecurLib/SSL-AT, and SecurTN products), after executing the RELOAD CERTIFICATES command, does not ensure that clients use a strong TLS cipher suite, which makes it easier for remote attackers to defeat intended cryptographic protection mechanisms by sniffing the network. This is fixed in 21.6.0.

CVE-2018-6535(发布:2018-02-27 14:29:00)NM
CVSS4.3

[原文]An issue was discovered in Icinga 2.x through 2.8.1. The lack of a constant-time password comparison function can disclose the password to an attacker.

CVE-2018-1425(发布:2018-02-27 12:29:00)NMS
CVSS4.3

[原文]IBM Security Guardium Big Data Intelligence (SonarG) 3.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 139003.

首页上一页56789101112下一页尾页 第7页 / 共307页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站