映射到 CWE-327 的搜索结果 (15)

CVE-2018-6619(发布:2018-05-11 17:29:00)NMP
CVSS2.1

[原文]Easy Hosting Control Panel (EHCP) v0.37.12.b makes it easier for attackers to crack database passwords by leveraging use of a weak hashing algorithm without a salt.

CVE-2017-1571(发布:2018-03-22 08:29:00)NMPS
CVSS2.1

[原文]IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 131853.

CVE-2018-1428(发布:2018-03-22 08:29:00)NMS
CVSS2.1

[原文]IBM GSKit (IBM DB2 for Linux, UNIX and Windows 9.7, 10.1, 10.5, and 11.1) uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 139073.

CVE-2017-8866(发布:2017-12-11 16:29:00)NM
CVSS4.3

[原文]Elemental Path's CogniToys Dino smart toys through firmware version 0.0.794 share a fixed small pool of hardcoded keys, allowing a remote attacker to use a different Dino device to decrypt VoIP traffic between a child's Dino and remote server.

CVE-2017-8191(发布:2017-11-22 14:29:04)NMS
CVSS4.3

[原文]FusionSphere OpenStack V100R006C00SPC102(NFV)has a week cryptographic algorithm vulnerability. Attackers may exploit the vulnerability to crack the cipher text and cause information leak on the transmission links.

CVE-2012-4449(发布:2017-10-30 15:29:00)NM
CVSS7.5

[原文]Apache Hadoop before 0.23.4, 1.x before 1.0.4, and 2.x before 2.0.2 generate token passwords using a 20-bit secret when Kerberos security features are enabled, which makes it easier for context-dependent attackers to crack secret keys via a brute-force attack.

123下一页尾页 第1页 / 共3页

关于SCAP中文社区

SCAP中文社区是国内第一个以SCAP为主题的中文开放社区。了解更多信息,请查阅[关于本站]

版权声明

CVE/CWE/OVAL均为MITRE公司的注册商标,它们的官方数据源均保存在MITRE公司的相关网站