Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
encryption vulnerabilities and exploits
(subscribe to this query)
6.9
CVSSv2
CVE-2010-5249
Untrusted search path vulnerability in Sophos Free Encryption 2.40.1.1 and Sophos SafeGuard PrivateCrypto 2.40.1.2 allows local users to gain privileges via a Trojan horse pcrypt0406.dll file in the current working directory, as demonstrated by a directory that contains a .uti fi...
Sophos Free Encryption 2.40.1.1
Sophos Safeguard Privatecrypto 2.40.1.2
5
CVSSv2
CVE-2014-7287
The key-management component in Symantec PGP Universal Server and Encryption Management Server prior to 3.3.2 MP7 allows remote malicious users to trigger unintended content in outbound e-mail messages via a crafted key UID value in an inbound e-mail message, as demonstrated by t...
Symantec Encryption Management Server
Symantec Pgp Universal Server
9
CVSSv2
CVE-2014-7288
Symantec PGP Universal Server and Encryption Management Server prior to 3.3.2 MP7 allow remote authenticated administrators to execute arbitrary shell commands via a crafted command line in a database-backup restore action.
Symantec Encryption Management Server
Symantec Pgp Universal Server
1 EDB exploit
NA
CVE-2023-32479
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server versions before 11.9.0 contain privilege escalation vulnerability due to improper ACL of the non-default installation directory. A local malicious user could potentially exploit this vu...
Dell Encryption
Dell Endpoint Security Suite Enterprise
Dell Security Management Server
NA
CVE-2023-39246
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server version before 11.8.1 contain an Insecure Operation on Windows Junction Vulnerability during installation. A local malicious user could potentially exploit this vulnerability to create ...
Dell Endpoint Security Suite Enterprise
Dell Encryption
Dell Security Management Server
5
CVSSv2
CVE-2019-4689
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man...
Ibm Guardium Data Encryption
Ibm Guardium For Cloud Key Management
3.5
CVSSv2
CVE-2019-4691
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sess...
Ibm Guardium Data Encryption
Ibm Guardium For Cloud Key Management
5
CVSSv2
CVE-2019-4686
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie wil...
Ibm Guardium Data Encryption
Ibm Guardium For Cloud Key Management
4.3
CVSSv2
CVE-2019-4688
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie wil...
Ibm Guardium Data Encryption
Ibm Guardium For Cloud Key Management
5
CVSSv2
CVE-2014-3436
Symantec Encryption Desktop 10.3.x prior to 10.3.2 MP3, and Symantec PGP Desktop 10.0.x up to and including 10.2.x, allows remote malicious users to cause a denial of service (CPU and memory consumption) via a crafted encrypted e-mail message that decompresses to a larger size.
Symantec Pgp Desktop 10.0.1
Symantec Pgp Desktop 10.0.0
Symantec Pgp Desktop 10.2.1
Symantec Pgp Desktop 10.2.2
Symantec Pgp Desktop 10.1.1
Symantec Pgp Desktop 10.1.2
Symantec Pgp Desktop 10.2.0
Symantec Pgp Desktop 10.0.2
Symantec Pgp Desktop 10.0.3
Symantec Pgp Desktop 10.1.0
Symantec Encryption Desktop 10.3.0
Symantec Encryption Desktop 10.3.1
Symantec Encryption Desktop 10.3.2
CVSSv2
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-21111
CVE-2024-32884
IDOR
CVE-2023-1000
CVE-2024-33260
CVE-2024-3682
reflected XSS
race condition
CVE-2024-3400
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »