Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
disk encryption vulnerabilities and exploits
(subscribe to this query)
5
CVSSv2
CVE-2019-6481
Abine Blur 7.8.2431 allows remote malicious users to conduct "Second-Factor Auth Bypass" attacks by using the "Perform a right-click operation to access a forgotten dev menu to insert user passwords that otherwise would require the user to accept a second-factor re...
Abine Blur 7.8.2431
4.6
CVSSv2
CVE-2020-11933
cloud-init as managed by snapd on Ubuntu Core 16 and Ubuntu Core 18 devices was run without restrictions on every boot, which a physical attacker could exploit by crafting cloud-init user-data/meta-data via external media to perform arbitrary changes on the device to bypass inten...
Canonical Snapd
Canonical Ubuntu Linux 16.04
Canonical Ubuntu Linux 18.04
Canonical Ubuntu Linux 19.10
Canonical Ubuntu Linux 20.04
7.1
CVSSv2
CVE-2013-0148
The Data Camouflage (aka FairCom Standard Encryption) algorithm in FairCom c-treeACE does not ensure that a decryption key is needed for accessing database contents, which allows context-dependent malicious users to read cleartext database records by copying a database to another...
Faircom C-treeace -
NA
CVE-2023-30367
Multi-Remote Next Generation Connection Manager (mRemoteNG) is free software that enables users to store and manage multi-protocol connection configurations to remotely connect to systems. mRemoteNG configuration files can be stored in an encrypted state on disk. mRemoteNG versio...
Mremoteng Mremoteng 1.77.3-nb
Mremoteng Mremoteng 1.77.2-nb
Mremoteng Mremoteng
1 Github repository
2.1
CVSSv2
CVE-2015-1415
The bsdinstall installer in FreeBSD 10.x prior to 10.1 p9, when configuring full disk encrypted ZFS, uses world-readable permissions for the GELI keyfile (/boot/encryption.key), which allows local users to obtain sensitive key information by reading the file.
Freebsd Freebsd 10.0
Freebsd Freebsd
Freebsd Freebsd 10.1
2.1
CVSSv2
CVE-2019-1589
A vulnerability in the Trusted Platform Module (TPM) functionality of software for Cisco Nexus 9000 Series Fabric Switches in Application Centric Infrastructure (ACI) mode could allow an unauthenticated, local attacker with physical access to view sensitive information on an affe...
Cisco Nx-os 8.3\\(0\\)sk\\(0.39\\)
4.3
CVSSv2
CVE-2007-4202
Guidance Software EnCase Enterprise Edition (EEE) 6 does not properly verify the identity of the acquisition target during communication with the EnCase Servlet (EEE servlet), which might allow remote malicious users to spoof the disk image.
Guidance Software Encase 6.0
4.6
CVSSv2
CVE-2007-2883
Credant Mobile Guardian Shield for Windows 5.2.1.105 and previous versions stores account names and passwords in plaintext in memory, which allows local users to obtain sensitive information by (1) reading the paging file or (2) dumping and searching the memory image. NOTE: This ...
Credant Credant Mobile Guardian Shield - Windows
7.1
CVSSv2
CVE-2013-5745
The vino_server_client_data_pending function in vino-server.c in GNOME Vino 2.26.1, 2.32.1, 3.7.3, and previous versions, and 3.8 when encryption is disabled, does not properly clear client data when an error causes the connection to close during authentication, which allows remo...
David King Vino 3.6.2
David King Vino
David King Vino 3.4.2
David King Vino 3.2.1
David King Vino 3.2.0
David King Vino 3.1.2
David King Vino 3.1.1
David King Vino 2.99.3
David King Vino 2.99.2
David King Vino 2.8.0
David King Vino 3.6.0
David King Vino 3.6.1
David King Vino 3.3.1
David King Vino 3.2.2
David King Vino 3.1.4
David King Vino 3.1.3
David King Vino 3.0.0
David King Vino 2.99.5
David King Vino 2.99.4
David King Vino 2.8.1
David King Vino 2.8.0.1
David King Vino 2.7.4.90
1 EDB exploit
1.9
CVSSv2
CVE-2018-12038
An issue exists on Samsung 840 EVO devices. Vendor-specific commands may allow access to the disk-encryption key.
Samsung 840 Evo Firmware -
2 Github repositories
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-27322
CVE-2006-4304
wireless
CVE-2023-23022
local file inclusion
CVE-2024-27058
CVE-2024-33820
open redirect
CVE-2024-27079
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
NEXT »