Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
encryption vulnerabilities and exploits
(subscribe to this query)
NA
CVE-2014-7288
Symantec PGP Universal Server and Encryption Management Server prior to 3.3.2 MP7 allow remote authenticated administrators to execute arbitrary shell commands via a crafted command line in a database-backup restore action.
Symantec Encryption Management Server
Symantec Pgp Universal Server
1 EDB exploit
NA
CVE-2010-5249
Untrusted search path vulnerability in Sophos Free Encryption 2.40.1.1 and Sophos SafeGuard PrivateCrypto 2.40.1.2 allows local users to gain privileges via a Trojan horse pcrypt0406.dll file in the current working directory, as demonstrated by a directory that contains a .uti fi...
Sophos Free Encryption 2.40.1.1
Sophos Safeguard Privatecrypto 2.40.1.2
NA
CVE-2014-7287
The key-management component in Symantec PGP Universal Server and Encryption Management Server prior to 3.3.2 MP7 allows remote malicious users to trigger unintended content in outbound e-mail messages via a crafted key UID value in an inbound e-mail message, as demonstrated by t...
Symantec Encryption Management Server
Symantec Pgp Universal Server
7.8
CVSSv3
CVE-2023-32479
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server versions before 11.9.0 contain privilege escalation vulnerability due to improper ACL of the non-default installation directory. A local malicious user could potentially exploit this vu...
Dell Encryption
Dell Endpoint Security Suite Enterprise
Dell Security Management Server
7.3
CVSSv3
CVE-2023-39246
Dell Encryption, Dell Endpoint Security Suite Enterprise, and Dell Security Management Server version before 11.8.1 contain an Insecure Operation on Windows Junction Vulnerability during installation. A local malicious user could potentially exploit this vulnerability to create ...
Dell Endpoint Security Suite Enterprise
Dell Encryption
Dell Security Management Server
7.5
CVSSv3
CVE-2019-4689
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 could allow a remote malicious user to obtain sensitive information, caused by the failure to properly enable HTTP Strict Transport Security. An attacker could exploit this vulnerability to obtain sensitive information using man...
Ibm Guardium Data Encryption
Ibm Guardium For Cloud Key Management
5.3
CVSSv3
CVE-2019-4686
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie wil...
Ibm Guardium Data Encryption
Ibm Guardium For Cloud Key Management
4.3
CVSSv3
CVE-2019-4688
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 does not set the secure attribute on authorization tokens or session cookies. Attackers may be able to get the cookie values by sending a http:// link to a user or by planting this link in a site the user goes to. The cookie wil...
Ibm Guardium Data Encryption
Ibm Guardium For Cloud Key Management
5.4
CVSSv3
CVE-2019-4691
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 is vulnerable to cross-site scripting. This vulnerability allows users to embed arbitrary JavaScript code in the Web UI thus altering the intended functionality potentially leading to credentials disclosure within a trusted sess...
Ibm Guardium Data Encryption
Ibm Guardium For Cloud Key Management
NA
CVE-2014-1646
Symantec PGP Desktop 10.0.x up to and including 10.2.x and Encryption Desktop Professional 10.3.x prior to 10.3.2 MP1 do not properly perform memory copies, which allows remote malicious users to cause a denial of service (read access violation and application crash) via a malfor...
Symantec Encryption Desktop 10.3.0
Symantec Encryption Desktop 10.3.1
Symantec Encryption Desktop 10.3.2
Symantec Pgp Desktop 10.0.3
Symantec Pgp Desktop 10.1.0
Symantec Pgp Desktop 10.1.1
Symantec Pgp Desktop 10.1.2
Symantec Pgp Desktop 10.2.0
Symantec Pgp Desktop 10.0.1
Symantec Pgp Desktop 10.2.1
Symantec Pgp Desktop 10.0.0
Symantec Pgp Desktop 10.0.2
Symantec Pgp Desktop 10.2.2
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
CVE-2024-2907
hardcoded
inject
CVE-2024-20359
CVE-2024-2467
CVE-2024-4077
CVE-2024-22391
camera
CVE-2024-20353
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
5
6
7
8
9
10
NEXT »