Search Blog Stats Labs

Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits

About

About Exploit Intel About Exploit Forge Privacy Policy

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Color Theme

Search Blog Statistics Labs Tools EIP CLI Search Tool EIP MCP Server EIP REST API API Rate Limits About About Exploit Forge Privacy

Exploit Database Researchers CWE Categories Vendors Ecosystems

RSS Feeds

Blog Posts Recent CVEs CVEs with Exploits CISA KEV

Follow:

Theme:

Home / CWE / CWE-327

CWE-327

High likelihood

Use of a Broken or Risky Cryptographic Algorithm

Parent: CWE-693 - Protection Mechanism Failure

The product uses a broken or risky cryptographic algorithm or protocol.

669 vulnerabilities with CWE-327

CVE-2024-10405 MEDIUM

Brocade SANnav < 2.3.1b - Use of Weak TLS Ciphers on Ports 443 and 18082

CVE-2024-52884 HIGH

AudioCodes Mediant Session Border Controller < 7.40a.501.841 - Weak Password Encryption in Configuration Exports

CVE-2024-49797 MEDIUM

IBM ApplinX 11.1 - Sensitive Information Exposure via Missing HTTP Strict Transport Security

CVE-2024-26317 MEDIUM

illumos-gate 2024-02-15 - Info Disclosure

CVE-2024-27256 MEDIUM

IBM MQ Container <3.1.4 - Info Disclosure

CVE-2024-38320 MEDIUM

IBM Storage Protect - Info Disclosure

CVE-2024-52331 HIGH

ECOVACS Robot Lawnmowers and Vacuums - Arbitrary Firmware Installation via Deterministic Symmetric Key

CVE-2024-22347 MEDIUM

IBM DevOps Velocity 5.0.0 and UrbanCode Velocity 4.0.0-4.0.25 - Use of Weak Cryptographic Algorithms

CVE-2024-8603 HIGH

B&R Automation Runtime <6.1, B&R mapp View <6.1 - Use After Free

CVE-2024-51456 MEDIUM

IBM Robotic Process Automation <23.0.19 - Info Disclosure

CVE-2024-52366 MEDIUM

IBM Concert Software <1.0.4 - Info Disclosure

CVE-2024-41763 MEDIUM

IBM Engineering Lifecycle Optimization - Publishing 7.0.2 and 7.0.3 - Use of a Broken or Risky Cryptographic Algorithm

CVE-2024-47921 HIGH

Smadar SPS - Use of a Broken or Risky Cryptographic Algorithm

CVE-2024-55539 LOW

Acronis Cyber Protect <build 39185-39938 - Info Disclosure

CVE-2024-28980 MEDIUM

Dell RecoverPoint for Virtual Machines 6.0.x - Use of a Broken or Risky Cryptographic Algorithm in SSH

CVE-2024-55885 HIGH

beego < 2.3.4 - Use of a Broken or Risky Cryptographic Algorithm

CVE-2024-53845 MEDIUM

ESPTouch <5.3.2-5.0.8 - Info Disclosure

CVE-2024-53441 CRITICAL

cookie-encrypter 1.0.1 - Bit Flipping Attack via DecryptCookie Function

CVE-2024-48847 HIGH

ABB ASPECT/MATRIX/NEXUS Firmware < 3.08.03 - MD5 Checksum Bypass via Weak Hash Validation

CVE-2024-41775 MEDIUM

IBM Cognos Controller 11.0.0 and 11.0.1 - Use of a Broken or Risky Cryptographic Algorithm

CVE-2024-52801 MEDIUM

sftpgo 2.3.0-2.6.3 - Authenticated Session Cookie Brute Force via Predictable xid Library

CVE-2024-43189 MEDIUM

IBM Concert Software <1.0.2 - Info Disclosure

CVE-2024-51556 MEDIUM

63moons Wave 2.0 < 1.1.7 - Authenticated Sensitive Data Exposure via Insufficient API Response Encryption

CVE-2024-51478 CRITICAL

YesWiki < 4.4.5 - Weak Password Reset Key Hashing via Hardcoded Salt

CVE-2024-10128 LOW

Topdata Inner Rep Plus WebServer 2.01 - Info Disclosure

Previous Page 7 of 27 Next

Details

Vulnerabilities 669

Exploit Likelihood High

Links

MITRE CWE Entry Search this CWE With Exploits

Exploit Intelligence Platform

Blog Stats Labs Exploits Researchers CWE Ecosystems CLI MCP API Limits About Privacy