Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-326

CWE-326

Inadequate Encryption Strength

Parent: CWE-693 - Protection Mechanism Failure

The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.

448 vulnerabilities with CWE-326

CVE-2020-9337 MEDIUM

GolfBuddy Course Manager 1.1 - Inadequate Encryption Strength via Base64-Encoded Password Transmission

CVE-2020-5224 MEDIUM

django-user-sessions < 1.7.1 - Session Takeover via Exposed Session Key

CVE-2020-6966 CRITICAL

GE Healthcare ApexPro Telemetry Server < 4.2 - Inadequate Encryption Strength

CVE-2019-4291 MEDIUM

IBM Maximo Anywhere <7.6.4.0 - Code Injection

CVE-2019-4160 HIGH

IBM Security Guardium Data Encryption 3.0.0.2 - Inadequate Encryption Strength

CVE-2019-19101 MEDIUM

B&R Automation Studio <4.3.11SP-4.7.2 - SSRF

CVE-2019-19097 MEDIUM

Hitachi Energy eSOMS 4.0-6.0.3 - Weak Cipher Suite Acceptance

CVE-2019-14855 HIGH

GnuPG < 2.2.18 - Certificate Signature Forgery via SHA-1 Collision

CVE-2019-12121 HIGH

ONAP Portal < 4.0.0 - Inadequate Encryption Strength via UserId Padding Oracle Attack

CVE-2019-19299 HIGH

SiNVR/SiVMS Video Server <5.0.2 - Info Disclosure

CVE-2019-18863 MEDIUM

Mitel 6800/6900 SIP <5.1.0.2051 SP2 - Man-In-The-Middle

CVE-2019-4557 HIGH

IBM Qradar Advisor <2.5 - Info Disclosure

CVE-2019-13163 MEDIUM

Fujitsu TLS Library - Inadequate Encryption Strength

CVE-2019-18263 MEDIUM

Philips Veradius Unity, Pulsera, and Endura Firmware - Inadequate Encryption Strength

CVE-2019-18241 MEDIUM

Philips IntelliBridge EC40 and EC80 Firmware - Inadequate Encryption Strength in SSH Server

CVE-2019-13539 HIGH

Medtronic Valleylab Exchange Client <3.4 - Info Disclosure

CVE-2019-17598 HIGH

Lightbend Play Framework 2.5.0-2.5.18 and 2.6.0-2.6.23 - Proxy Credential Exposure via HTTPS Connection

CVE-2019-4339 HIGH

IBM Security Guardium Big Data Intelligence - Info Disclosure

CVE-2019-16649 CRITICAL

Supermicro X11DAI-N & X11/H11/H12/M11/X9/X10 Firmware - Virtual Media Service Credential Exposure

CVE-2019-4175 HIGH

IBM Cognos Controller 10.3.0, 10.3.1, 10.4.0, 10.4.1 - Inadequate Encryption Strength

CVE-2019-15806 CRITICAL

CommScope ARRIS TR4400 - Auth Bypass

CVE-2019-15805 CRITICAL

CommScope ARRIS TR4400 - Auth Bypass

CVE-2019-14332 HIGH

D-Link 6600-AP & DWL-3600AP Ax - Info Disclosure

CVE-2019-10639 HIGH

Linux kernel 4.1-4.20.9 - Information Exposure via IP ID Hash Collision

CVE-2019-10638 MEDIUM

Linux Kernel < 5.1.7 - Information Exposure via IP ID Hash Collision

Previous Page 12 of 18 Next

Details

Vulnerabilities 448

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy