Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
crc vulnerabilities and exploits
(subscribe to this query)
NA
CVE-1999-1085
SSH 1.2.25, 1.2.23, and other versions, when used in in CBC (Cipher Block Chaining) or CFB (Cipher Feedback 64 bits) modes, allows remote malicious users to insert arbitrary data into an existing stream between an SSH client and server by using a known plaintext attack and comput...
Ssh Secure Shell 1.2.23
Ssh Secure Shell 1.2.25
NA
CVE-2001-0144
CORE SDI SSH1 CRC-32 compensation attack detector allows remote malicious users to execute arbitrary commands on an SSH server or client via an integer overflow.
Openbsd Openssh 1.2.2
Openbsd Openssh 1.2.3
Ssh Ssh 1.2.27
Ssh Ssh 1.2.28
Openbsd Openssh 2.2
Ssh Ssh 1.2.24
Ssh Ssh 1.2.31
Openbsd Openssh 2.1
Openbsd Openssh 2.1.1
Ssh Ssh 1.2.29
Ssh Ssh 1.2.30
Ssh Ssh 1.2.25
Ssh Ssh 1.2.26
2 EDB exploits
NA
CVE-2001-1469
The RC4 stream cipher as used by SSH1 allows remote malicious users to modify messages without detection by XORing the original message's cyclic redundancy check (CRC) with the CRC of a mask consisting of all the bits of the original message that were modified.
Ssh Ssh 1.2.30
Ssh Ssh 1.2.31
Ssh Ssh 1.2.24
Ssh Ssh 1.2.25
Ssh Ssh 1.2.28
Ssh Ssh 1.2.29
Ssh Ssh 1.2.26
Ssh Ssh 1.2.27
7.5
CVSSv3
CVE-2022-30275
The Motorola MOSCAD Toolbox software through 2022-05-02 relies on a cleartext password. It utilizes an MDLC driver to communicate with MOSCAD/ACE RTUs for engineering purposes. Access to these communications is protected by a password stored in cleartext in the wmdlcdrv.ini drive...
Motorolasolutions Mdlc 4.80.0024
Motorolasolutions Mdlc 4.82.004
Motorolasolutions Mdlc 4.83.001
7.8
CVSSv3
CVE-2017-11072
In Android for MSM, Firefox OS for MSM, QRD Android, with all Android releases from CAF using the Linux kernel, while calculating CRC for GPT header fields with partition entries greater than 16384 buffer overflow occurs.
Google Android -
5.3
CVSSv3
CVE-2016-1376
Cisco IOS XR 4.2.3, 4.3.0, 4.3.4, and 5.3.1 on ASR 9000 devices allows remote malicious users to cause a denial of service (CRC and symbol errors, and interface flap) via crafted bit patterns in packets, aka Bug ID CSCuv78548.
Cisco Ios Xr 4.3.0
Cisco Ios Xr 4.2.3
Cisco Ios Xr 4.3.4
Cisco Ios Xr 5.3.1
NA
CVE-2001-1470
The IDEA cipher as implemented by SSH1 does not protect the final block of a message against modification, which allows remote malicious users to modify the block without detection by changing its cyclic redundancy check (CRC) to match the modifications to the message.
Ssh Ssh 1.2.29
Ssh Ssh 1.2.30
Ssh Ssh 1.2.24
Ssh Ssh 1.2.31
Ssh Ssh 1.2.27
Ssh Ssh 1.2.28
Ssh Ssh 1.2.25
Ssh Ssh 1.2.26
8.1
CVSSv3
CVE-2020-9058
Z-Wave devices based on Silicon Labs 500 series chipsets using CRC-16 encapsulation, including but likely not limited to the Linear LB60Z-1 version 3.5, Dome DM501 version 4.26, and Jasco ZW4201 version 4.05, do not implement encryption or replay protection.
Silabs 500 Series Firmware
Dome Dm501 4.26
Jasco Zw4201 4.05
Linear Lb60z-1 3.5
6.8
CVSSv3
CVE-2018-3920
An exploitable code execution vulnerability exists in the firmware update functionality of the Yi Home Camera 27US 1.8.7.0D. A specially crafted 7-Zip file can cause a CRC collision, resulting in a firmware update and code execution. An attacker can insert an SDcard to trigger th...
Yitechnology Yi Home Camera Firmware 1.8.7.0d
NA
CVE-2006-4116
Multiple stack-based buffer overflows in Lhaz prior to 1.32 allow user-assisted malicious users to execute arbitrary code via a long filename in (1) an LHZ archive, when saving the filename during extraction; and (2) an LHZ archive with an invalid CRC checksum, when constructing ...
Lhaz Lhaz
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2022-48700
CVE-2022-48689
CVE-2024-27956
CVE-2023-6363
SQL
NULL pointer dereference
CVE-2023-41830
CVE-2015-2051
arbitrary
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
1
2
3
4
5
NEXT »