Vulnerabilities > Cryptographic Issues

DATE CVE VULNERABILITY TITLE RISK
2018-05-31 CVE-2016-10565 Cryptographic Issues vulnerability in Cnpmjs Operadriver 0.2.1/0.2.2
operadriver is a Opera Driver for Selenium.
network
high complexity
cnpmjs CWE-310
8.1
2018-05-31 CVE-2016-10564 Cryptographic Issues vulnerability in Apk-Parser Project Apk-Parser
apk-parser is a tool to extract Android Manifest info from an APK file.
network
high complexity
apk-parser-project CWE-310
8.1
2018-05-31 CVE-2016-10563 Cryptographic Issues vulnerability in Ipfs Go-Ipfs-Dep
During the installation process, the go-ipfs-deps module before 0.4.4 insecurely downloads resources over HTTP.
network
high complexity
ipfs CWE-310
8.1
2018-05-31 CVE-2016-10562 Cryptographic Issues vulnerability in Iedriver Project Iedriver
iedriver is an NPM wrapper for Selenium IEDriver.
network
high complexity
iedriver-project CWE-310
8.1
2018-05-31 CVE-2016-10560 Cryptographic Issues vulnerability in Galenframework Galenframework-Cli
galenframework-cli is the node wrapper for the Galen Framework.
network
high complexity
galenframework CWE-310
8.1
2018-05-31 CVE-2016-10557 Cryptographic Issues vulnerability in Appium Appium-Chromedriver
appium-chromedriver is a Node.js wrapper around Chromedriver.
network
high complexity
appium CWE-310
8.1
2018-05-31 CVE-2016-10555 Cryptographic Issues vulnerability in Jwt-Simple Project Jwt-Simple 0.1.0/0.2.0/0.3.0
Since "algorithm" isn't enforced in jwt.decode()in jwt-simple 0.3.0 and earlier, a malicious user could choose what algorithm is sent sent to the server.
network
low complexity
jwt-simple-project CWE-310
6.5
2018-05-31 CVE-2016-10535 Cryptographic Issues vulnerability in Csrf-Lite Project Csrf-Lite
csrf-lite is a cross-site request forgery protection library for framework-less node sites.
network
high complexity
csrf-lite-project CWE-310
5.9
2018-05-29 CVE-2016-10698 Cryptographic Issues vulnerability in Mystem-Fix Project Mystem-Fix 0.0.4/0.0.5
mystem-fix is a node.js wrapper for MyStem morphology text analyzer by Yandex.ru mystem-fix downloads binary resources over HTTP, which leaves it vulnerable to MITM attacks.
network
high complexity
mystem-fix-project CWE-310
8.1
2018-05-29 CVE-2016-10682 Cryptographic Issues vulnerability in Massif Project Massif 0.0.11
massif is a Phantomjs fork massif downloads resources over HTTP, which leaves it vulnerable to MITM attacks.
network
high complexity
massif-project CWE-310
8.1