Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-326

CWE-326

Inadequate Encryption Strength

Parent: CWE-693 - Protection Mechanism Failure

The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.

448 vulnerabilities with CWE-326

CVE-2023-22271 MEDIUM

Experience Manager <6.5.15.0 - Info Disclosure

CVE-2023-23911 HIGH

rocket.chat < 6.0.0 - Improper Access Control via Group Key Manipulation

CVE-2023-21444 HIGH

Samsung Flow < 4.9.14.0 - Improper Cryptographic Implementation

CVE-2023-21443 HIGH

Samsung Flow < 4.9.04 - Improper Cryptographic Implementation

CVE-2022-40745 MEDIUM

IBM Aspera Faspex 5.0.0-5.0.7 - Inadequate Encryption Strength

CVE-2022-32753 MEDIUM

IBM Security Verify Directory 10.0.0 - Inadequate Encryption Strength

CVE-2022-48193 MEDIUM

Softing smartLink SW-HT < 1.30 - Inadequate Encryption Strength

CVE-2022-46783 MEDIUM

Stormshield SSL VPN Client <3.2.0 - Info Disclosure

CVE-2022-45453 HIGH

Acronis Cyber Protect 15 < 30984 - Weak TLS/SSL Cipher Suites

CVE-2022-4048 HIGH

CODESYS Dev Sys <V3.5.18.40 - Info Disclosure

CVE-2022-45141 CRITICAL

Samba < 4.15.13 - Inadequate Encryption Strength in Kerberos Ticket Issuance

CVE-2022-34385 MEDIUM

Dell SupportAssist < 3.11.4 (Home) / < 3.2.0 (Business) - Sensitive Info Exposure via Weak Crypto

CVE-2022-43922 MEDIUM

IBM App Connect Enterprise Certified Container <6.2 - Info Disclosure

CVE-2022-2582 MEDIUM

AWS S3 Crypto SDK - Info Disclosure

CVE-2022-24116 CRITICAL

General Electric Renewable Energy <8.3.0 - Info Disclosure

CVE-2022-47931 CRITICAL

iofinnet tss-lib < 2.0.0 - Hash Collision via Inadequate Encryption Strength

CVE-2022-38659 MEDIUM

HCL BigFix Platform 9.5-9.5.19 - Inadequate Encryption Strength of Operator Credentials

CVE-2022-46825 MEDIUM

JetBrains IntelliJ IDEA <2022.3 - Info Disclosure

CVE-2022-2640 HIGH

Horner Automation's RCC 972 <15.40 - Info Disclosure

CVE-2022-4036 MEDIUM

WordPress Appointment Hour Booking <1.3.72 - Auth Bypass

CVE-2022-45379 HIGH

Jenkins Script Security Plugin < 1190.v65867a_a_47126 - Inadequate Encryption Strength via SHA-1 Hash Collision

CVE-2022-41209 MEDIUM

SAP Customer Data Cloud Gigya mobile app for Android <7.4 - Info Di...

CVE-2022-3433 MEDIUM

aeson < 2.0.1.0 - Denial of Service via Hash Collision in JSON Input

CVE-2022-3273 CRITICAL

GitHub ikus060/rdiffweb <2.5.0a4 - DoS

CVE-2022-29835 MEDIUM

WD Discovery < 4.4.396 - Inadequate Encryption Strength via SHA-1 Signed Executables

Previous Page 7 of 18 Next

Details

Vulnerabilities 448

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy