Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
encryption desktop vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2012-6533
Buffer overflow in pgpwded.sys in Symantec PGP Desktop 10.x and Encryption Desktop 10.3.0 before MP1 on Windows XP and Server 2003 allows local users to gain privileges via a crafted application.
Symantec Pgp Desktop 10.0.0
Symantec Pgp Desktop 10.2.0
Symantec Pgp Desktop 10.0.2
Symantec Pgp Desktop 10.0.3
Symantec Pgp Desktop 10.1.0
Symantec Pgp Desktop 10.1.1
Symantec Pgp Desktop 10.0.1
Symantec Pgp Desktop 10.1.2
Symantec Pgp Desktop 10.2.1
Symantec Encryption Desktop 10.3.0
1 EDB exploit
5.5
CVSSv3
CVE-2023-28124
Improper usage of symmetric encryption in UI Desktop for Windows (Version 0.59.1.71 and previous versions) could allow users with access to UI Desktop configuration files to decrypt their content.This vulnerability is fixed in Version 0.62.3 and later.
Ui Desktop
9.9
CVSSv3
CVE-2021-42001
PingID Desktop before 1.7.3 has a misconfiguration in the encryption libraries which can lead to sensitive data exposure. An attacker capable of exploiting this vulnerability may be able to successfully complete an MFA challenge via OTP.
Pingidentity Pingid Desktop
NA
CVE-2001-1005
Starfish Truesync Desktop 2.0b as used on the REX 5000 PDA uses weak encryption to store the user password in a registry key, which allows attackers who have access to the registry key to decrypt the password and gain privileges.
Starfish Truesync Desktop 2.0b
9.8
CVSSv3
CVE-2021-44029
An issue exists in Quest KACE Desktop Authority prior to 11.2. This vulnerability allows malicious users to execute remote code through a deserialization exploitation in the RadAsyncUpload function of ASP.NET AJAX. An attacker can leverage this vulnerability when the encryption k...
Quest Kace Desktop Authority
NA
CVE-2008-2299
Unspecified vulnerability in SecureICA and ICA Basic encryption of Citrix Presentation Server 4.5 and previous versions, Access Essentials 2.0 and previous versions, and Desktop Server 1.0 can cause clients to use weaker encryption settings than configured by the administrator, w...
Citrix Presentation Server
Citrix Desktop Server 1.0
Citrix Access Essentials
NA
CVE-2010-1568
The Send Secure functionality in the Cisco IronPort Desktop Flag Plug-in for Outlook prior to 6.5.0-006 does not properly handle simultaneously composed messages, which might allow remote malicious users to obtain cleartext contents of e-mail messages that were intended to be enc...
Cisco Ironport Desktop Flag Plugin For Outlook 6.2.4.3
Cisco Ironport Desktop Flag Plugin For Outlook
NA
CVE-2002-0685
Heap-based buffer overflow in the message decoding functionality for PGP Outlook Encryption Plug-In, as used in NAI PGP Desktop Security 7.0.4, Personal Security 7.0.3, and Freeware 7.0.3, allows remote malicious users to modify the heap and gain privileges via a large, malformed...
Pgp Desktop Security 7.0.4
Pgp Freeware 7.0.3
Pgp Personal Security 7.0.3
6.5
CVSSv3
CVE-2021-32728
The Nextcloud Desktop Client is a tool to synchronize files from Nextcloud Server with a computer. Clients using the Nextcloud end-to-end encryption feature download the public and private key via an API endpoint. In versions before 3.3.0, the Nextcloud Desktop client fails to ch...
Nextcloud Desktop
Debian Debian Linux 10.0
Debian Debian Linux 11.0
7.4
CVSSv3
CVE-2017-12150
It was found that samba prior to 4.4.16, 4.5.x prior to 4.5.14, and 4.6.x prior to 4.6.8 did not enforce "SMB signing" when certain configuration options were enabled. A remote attacker could launch a man-in-the-middle attack and retrieve information in plain-text.
Samba Samba
Redhat Enterprise Linux Desktop 7.0
Redhat Enterprise Linux Workstation 7.0
Redhat Enterprise Linux Server 7.0
Redhat Enterprise Linux Desktop 6.0
Redhat Enterprise Linux Server 6.0
Redhat Enterprise Linux Workstation 6.0
Redhat Gluster Storage 3.0
Debian Debian Linux 8.0
Debian Debian Linux 9.0
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-26925
CVE-2023-41826
LFI
CVE-2022-22364
CVE-2024-2887
command injection
remote code execution
CVE-2024-34446
CVE-2022-48699
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
NEXT »