映射到 CWE-310,CWE-312,CWE-326 的搜索结果 (1811)

CVE-2018-6295(发布:2018-03-13 13:29:00)NM
CVSS7.5

[原文]Unencrypted way of remote control and communications in Hanwha Techwin Smartcams

CVE-2018-6312(发布:2018-03-10 17:29:00)NM
CVSS9.0

[原文]A privileged account with a weak default password on the Foxconn femtocell FEMTO AP-FC4064-T version AP_GT_B38_5.8.3lb15-W47 LTE Build 15 can be used to turn on the TELNET service via the web interface, which allows root login without any password. This vulnerability will lead to full system compromise and disclosure of user communications. The foxconn account with an 8-character lowercase alphabetic password can be used.

CVE-2018-5461(发布:2018-03-06 16:29:00)NM
CVSS5.8

[原文]An Inadequate Encryption Strength issue was discovered in Belden Hirschmann RS, RSR, RSB, MACH100, MACH1000, MACH4000, MS, and OCTOPUS Classic Platform Switches. An inadequate encryption strength vulnerability in the web interface has been identified, which may allow an attacker to obtain sensitive information through a successful man-in-the-middle attack.

CVE-2018-6019(发布:2018-03-06 15:29:00)NM
CVSS4.3

[原文]Samsung Display Solutions App before 3.02 for Android allows man-in-the-middle attackers to spoof B2B content by leveraging failure to use encryption during information transmission.

CVE-2017-9267(发布:2018-03-02 15:29:00)NM
CVSS5.0

[原文]In Novell eDirectory before 9.0.3.1 the LDAP interface was not strictly enforcing cipher restrictions allowing weaker ciphers to be used during SSL BIND operations.

CVE-2018-6653(发布:2018-02-28 19:29:00)NM
CVSS5.0

[原文]comforte SWAP 1049 through 1069 and 20.0.0 through 21.5.3 (as used in SSLOBJ on HPE NonStop SSL T0910, and in the comforte SecurCS, SecurFTP, SecurLib/SSL-AT, and SecurTN products), after executing the RELOAD CERTIFICATES command, does not ensure that clients use a strong TLS cipher suite, which makes it easier for remote attackers to defeat intended cryptographic protection mechanisms by sniffing the network. This is fixed in 21.6.0.

首页上一页12345678下一页尾页 第2页 / 共302页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站