The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.
448 vulnerabilities with CWE-326
CVE-2021-32496
MEDIUM
SICK Visionary-S CX < 5.21.2.29154R - Inadequate Encryption Strength in SSH Interface
CVSS 5.3
CVE-2021-25392
MEDIUM
Samsung Dex <SMR MAY-2021 Release 1 - Info Disclosure
CVSS 4.0
CVE-2021-27457
HIGH
Emerson Rosemount X-STREAM - Info Disclosure
CVSS 7.5
CVE-2021-21507
HIGH
Dell EMC X-Series <3.0.1.8 & PowerEdge VRTX <2.0.0.82 - Info Disclo...
CVSS 8.8
CVE-2021-23982
MEDIUM
Firefox < 87.0 and Firefox ESR < 78.9 - Network Scanning via WebRTC Connections
CVSS 6.5
CVE-2021-27450
HIGH
GE MU320E Firmware < 04a00.1 - Inadequate Encryption Strength in SSH Server Configuration
CVSS 7.8
CVE-2021-21387
HIGH
Wrongthink <2.3.0 - Info Disclosure
CVSS 8.1
CVE-2021-20406
LOW
IBM Security Verify Information Queue <1.0.8 - Info Disclosure
CVSS 2.2
CVE-2021-21474
MEDIUM
SAP HANA Database 1.0, 2.0 - SAML Token Tampering via MD5 Digest Weakness
CVSS 6.5
CVE-2021-25761
MEDIUM
JetBrains Ktor < 1.5.0 - Inadequate Encryption Strength in SessionStorage Key
CVSS 5.3
CVE-2021-3131
HIGH
1C:Enterprise 8 < 8.3.17.1851 - Inadequate Encryption Strength via Base64 Credential Exposure
CVSS 7.5
CVE-2020-4099
MEDIUM
HCL Verse < 12.0.15 - Inadequate Encryption Strength via Weak Key Length
CVSS 5.9
CVE-2020-16235
LOW
Emerson OpenEnterprise SCADA Server <= 3.3.5 - Inadequate Encryption Strength
CVSS 3.8
CVE-2020-14481
HIGH
FactoryTalk View SE - Info Disclosure
CVSS 7.8
CVE-2020-10636
MEDIUM
Emerson OpenEnterprise <3.3.4 - Info Disclosure
CVSS 6.5
CVE-2020-15387
HIGH
Brocade Fabric OS <7.4.2h,v8.2.1c,v8.2.2,v9.0.0 - Info Disclosure
CVSS 7.4
CVE-2020-27208
MEDIUM
SoloKeys Solo 4.0.0 & Somu/Nitrokey FIDO2 - Info Disclosure
CVSS 6.8
CVE-2020-18220
HIGH
DoraCMS < 2.1.1 - Inadequate Encryption Strength for User Passwords
CVSS 7.5
CVE-2020-27020
HIGH
Kaspersky Password Manager - Info Disclosure
CVSS 7.5
CVE-2020-26197
HIGH
Dell PowerScale OneFS 8.1.0-9.1.0 - Cleartext Transmission of Sensitive Information via LDAP Provider
CVSS 7.5
CVE-2020-35221
HIGH
NETGEAR JGS516PE/GS116Ev2 v2.6.0.43 - Inadequate Encryption Strength in NSDP Password Authentication
CVSS 8.8
CVE-2020-10554
HIGH
Psyprax < 3.2.2 - Insufficiently Protected Credentials via Obfuscated Password Storage
CVSS 7.5
CVE-2020-10375
MEDIUM
New Media Smarty < 9.10 - Inadequate Encryption Strength in Password Storage
CVSS 5.5
CVE-2020-25685
LOW
dnsmasq < 2.83 - DNS Cache Poisoning via Weak Query Name Hash
CVSS 3.7
CVE-2020-26263
HIGH
tlslite-ng <0.7.6, 0.8.0-alpha39 - Info Disclosure
CVSS 7.5
Details
Vulnerabilities
448