CWE:
 

Sorry. No results for Bugtraq WLB2


CVEMAP Search Results

CVE
Details
Description
2019-07-03
Medium
CVE-2018-18325

Vendor: Dnnsoftware
Software: Dotnetnuke
 

 
DNN (aka DotNetNuke) 9.2 through 9.2.2 uses a weak encryption algorithm to protect input parameters. NOTE: this issue exists because of an incomplete fix for CVE-2018-15811.

 
Medium
CVE-2018-15811

Vendor: Dnnsoftware
Software: Dotnetnuke
 

 
DNN (aka DotNetNuke) 9.2 through 9.2.1 uses a weak encryption algorithm to protect input parameters.

 
2019-07-01
Low
CVE-2019-4102

Vendor: IBM
Software: DB2
 

 
IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, and 11.0 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 158092.

 
2019-06-28
Medium
CVE-2018-20810

Vendor: Pulsesecure
Software: Pulse connec...
 

 
Session data between cluster nodes during cluster synchronization is not properly encrypted in Pulse Secure Pulse Connect Secure (PCS) 8.3RX before 8.3R2 and Pulse Policy Secure (PPS) 5.4RX before 5.4R2. This is not applicable to PCS 8.1RX, PPS 5.2RX, or stand-alone devices.

 
2019-06-25
Low
CVE-2019-4151

Vendor: IBM
Software: Security acc...
 

 
IBM Security Access Manager 9.0.1 through 9.0.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 158512.

 
2019-05-29
Medium
CVE-2019-4256

Vendor: IBM
Software: Api connect
 

 
IBM API Connect 5.0.0.0 through 5.0.8.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 159944.

 
2019-05-01
Medium
CVE-2018-1608

Vendor: IBM
Software: Rational eng...
 

 
IBM Rational Engineering Lifecycle Manager 6.0 through 6.0.6 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 143798.

 
2019-04-29
Medium
CVE-2018-2007

Vendor: IBM
Software: Api connect
 

 
IBM API Connect 2018.1 and 2018.4.1.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 155078.

 
2019-04-15
Low
CVE-2018-1925

Vendor: IBM
Software: Websphere mq
 

 
IBM WebShere MQ 9.1.0.0, 9.1.0.1, 9.1.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. IBM X-Force ID: 152925.

 
2019-04-07
Low
CVE-2019-10734

Vendor: Trojita project
Software: Trojita
 

 
In KDE Trojita 0.7, an attacker in possession of S/MIME or PGP encrypted emails can wrap them as sub-parts within a crafted multipart email. The encrypted part(s) can further be hidden using HTML/CSS or ASCII newline characters. This modified multipart email can be re-sent by the attacker to the intended receiver. If the receiver replies to this (benign looking) email, they unknowingly leak the plaintext of the encrypted message part(s) back to the attacker.

 

 


Copyright 2019, cxsecurity.com

 

Back to Top