Vulmon
Recent Vulnerabilities
Product List
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
encryption vulnerabilities and exploits
(subscribe to this query)
7.5
CVSSv3
CVE-2018-15766
On install, Dell Encryption versions prior 10.0.1 and Dell Endpoint Security Suite Enterprise versions prior 2.0.1 will overwrite and manually set the "Minimum Password Length" group policy object to a value of 1 on that device. This allows for users to bypass any exist...
Dell Encryption
Dell Endpoint Security Suite Enterprise
7.8
CVSSv3
CVE-2020-5358
Dell Encryption versions before 10.7 and Dell Endpoint Security Suite versions before 2.7 contain a privilege escalation vulnerability due to incorrect permissions. A local malicious user with low privileges could potentially exploit this vulnerability to gain elevated privilege ...
Dell Endpoint Security Suite Enterprise
Dell Encryption
NA
CVE-2014-7287
The key-management component in Symantec PGP Universal Server and Encryption Management Server prior to 3.3.2 MP7 allows remote malicious users to trigger unintended content in outbound e-mail messages via a crafted key UID value in an inbound e-mail message, as demonstrated by t...
Symantec Encryption Management Server
Symantec Pgp Universal Server
NA
CVE-2014-7288
Symantec PGP Universal Server and Encryption Management Server prior to 3.3.2 MP7 allow remote authenticated administrators to execute arbitrary shell commands via a crafted command line in a database-backup restore action.
Symantec Encryption Management Server
Symantec Pgp Universal Server
1 EDB exploit
NA
CVE-2010-5249
Untrusted search path vulnerability in Sophos Free Encryption 2.40.1.1 and Sophos SafeGuard PrivateCrypto 2.40.1.2 allows local users to gain privileges via a Trojan horse pcrypt0406.dll file in the current working directory, as demonstrated by a directory that contains a .uti fi...
Sophos Safeguard Privatecrypto 2.40.1.2
Sophos Free Encryption 2.40.1.1
NA
CVE-2011-0899
The AES encryption module 7.x-1.4 for Drupal leaves certain debugging code enabled in release, which records the plaintext password of the last logged-in user and allows remote malicious users to gain privileges as that user.
Johan Lindskog Aes Encryption Module 7.x-1.4
NA
CVE-2014-1647
Symantec PGP Desktop 10.0.x up to and including 10.2.x and Encryption Desktop Professional 10.3.x prior to 10.3.2 MP1 do not properly perform block-data moves, which allows remote malicious users to cause a denial of service (read access violation and application crash) via a mal...
Symantec Pgp Desktop 10.2.2
Symantec Pgp Desktop 10.1.0
Symantec Pgp Desktop 10.2.0
Symantec Pgp Desktop 10.1.1
Symantec Pgp Desktop 10.0.0
Symantec Pgp Desktop 10.0.2
Symantec Pgp Desktop 10.0.3
Symantec Pgp Desktop 10.1.2
Symantec Pgp Desktop 10.0.1
Symantec Pgp Desktop 10.2.1
Symantec Encryption Desktop 10.3.0
Symantec Encryption Desktop 10.3.2
Symantec Encryption Desktop 10.3.1
NA
CVE-2014-3431
Symantec PGP Desktop 10.x, and Encryption Desktop Professional 10.3.x prior to 10.3.2 MP2, on OS X uses world-writable permissions for temporary files, which allows local users to bypass intended restrictions on file reading, modification, creation, and permission changes via uns...
Symantec Encryption Desktop 10.3.0
Symantec Encryption Desktop 10.3.1
Symantec Encryption Desktop 10.3.2
Symantec Pgp Desktop 10.0.0
Symantec Pgp Desktop 10.0.1
Symantec Pgp Desktop 10.0.2
Symantec Pgp Desktop 10.0.3
Symantec Pgp Desktop 10.1.0
Symantec Pgp Desktop 10.1.1
Symantec Pgp Desktop 10.1.2
Symantec Pgp Desktop 10.2.0
Symantec Pgp Desktop 10.2.1
Symantec Pgp Desktop 10.2.2
NA
CVE-2014-3436
Symantec Encryption Desktop 10.3.x prior to 10.3.2 MP3, and Symantec PGP Desktop 10.0.x up to and including 10.2.x, allows remote malicious users to cause a denial of service (CPU and memory consumption) via a crafted encrypted e-mail message that decompresses to a larger size.
Symantec Pgp Desktop 10.2.2
Symantec Pgp Desktop 10.1.0
Symantec Pgp Desktop 10.2.0
Symantec Pgp Desktop 10.1.1
Symantec Pgp Desktop 10.0.0
Symantec Pgp Desktop 10.0.2
Symantec Pgp Desktop 10.0.3
Symantec Pgp Desktop 10.1.2
Symantec Pgp Desktop 10.0.1
Symantec Pgp Desktop 10.2.1
Symantec Encryption Desktop 10.3.1
Symantec Encryption Desktop 10.3.2
Symantec Encryption Desktop 10.3.0
NA
CVE-2014-1646
Symantec PGP Desktop 10.0.x up to and including 10.2.x and Encryption Desktop Professional 10.3.x prior to 10.3.2 MP1 do not properly perform memory copies, which allows remote malicious users to cause a denial of service (read access violation and application crash) via a malfor...
Symantec Encryption Desktop 10.3.0
Symantec Encryption Desktop 10.3.2
Symantec Encryption Desktop 10.3.1
Symantec Pgp Desktop 10.2.2
Symantec Pgp Desktop 10.1.0
Symantec Pgp Desktop 10.2.0
Symantec Pgp Desktop 10.1.1
Symantec Pgp Desktop 10.0.0
Symantec Pgp Desktop 10.0.2
Symantec Pgp Desktop 10.0.3
Symantec Pgp Desktop 10.1.2
Symantec Pgp Desktop 10.0.1
Symantec Pgp Desktop 10.2.1
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
type confusion
IMAP
CVE-2024-36103
CVE-2024-28995
CVE-2024-37325
CVE-2024-30078
CVE-2024-30082
SQL injection
CVE-2024-30052
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »