Vulnerabilities > Inadequate Encryption Strength

DATE CVE VULNERABILITY TITLE RISK
2021-02-19 CVE-2020-36250 Inadequate Encryption Strength vulnerability in Owncloud
In the ownCloud application before 2.15 for Android, the lock protection mechanism can be bypassed by moving the system date/time into the past.
local
low complexity
owncloud CWE-326
2.1
2021-02-16 CVE-2021-23839 Inadequate Encryption Strength vulnerability in Openssl
OpenSSL 1.0.2 supports SSLv2.
network
low complexity
openssl CWE-326
5.0
2021-01-26 CVE-2020-36201 Inadequate Encryption Strength vulnerability in Xerox products
An issue was discovered in certain Xerox WorkCentre products.
network
low complexity
xerox CWE-326
5.0
2021-01-20 CVE-2020-20949 Inadequate Encryption Strength vulnerability in multiple products
Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in STM32 cryptographic firmware library software expansion for STM32Cube (UM1924).
network
st ietf CWE-326
4.3
2021-01-19 CVE-2020-20950 Inadequate Encryption Strength vulnerability in multiple products
Bleichenbacher's attack on PKCS #1 v1.5 padding for RSA in Microchip Libraries for Applications 2018-11-26 All up to 2018-11-26.
4.3
2021-01-13 CVE-2020-4596 Inadequate Encryption Strength vulnerability in IBM Security Guardium Insights 2.0.2
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-326
5.0
2021-01-13 CVE-2020-4595 Inadequate Encryption Strength vulnerability in IBM Security Guardium Insights 2.0.2
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-326
5.0
2021-01-13 CVE-2020-4594 Inadequate Encryption Strength vulnerability in IBM Security Guardium Insights 2.0.2
IBM Security Guardium Insights 2.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-326
5.0
2021-01-13 CVE-2019-4160 Inadequate Encryption Strength vulnerability in IBM Security Guardium Data Encrpytion 3.0.0.2
IBM Security Guardium Data Encryption (GDE) 3.0.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
network
low complexity
ibm CWE-326
5.0
2021-01-01 CVE-2017-20001 Inadequate Encryption Strength vulnerability in AES Encryption Project AES Encryption
The AES encryption project 7.x and 8.x for Drupal does not sufficiently prevent attackers from decrypting data, aka SA-CONTRIB-2017-027.
network
low complexity
aes-encryption-project CWE-326
5.0