Vulnerabilities > Inadequate Encryption Strength
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-02-03 | CVE-2021-25761 | Inadequate Encryption Strength vulnerability in Jetbrains Ktor In JetBrains Ktor before 1.5.0, a birthday attack on SessionStorage key was possible. | 5.3 |
| 2021-01-20 | CVE-2020-25685 | Inadequate Encryption Strength vulnerability in multiple products A flaw was found in dnsmasq before version 2.83. | 3.7 |
| 2021-01-13 | CVE-2019-4160 | Inadequate Encryption Strength vulnerability in IBM Security Guardium Data Encrpytion 3.0.0.2 IBM Security Guardium Data Encryption (GDE) 3.0.0.2 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. | 7.5 |
| 2021-01-13 | CVE-2021-3131 | Inadequate Encryption Strength vulnerability in 1C 1C:Enterprise The Web server in 1C:Enterprise 8 before 8.3.17.1851 sends base64 encoded credentials in the creds URL parameter. | 7.5 |
| 2021-01-01 | CVE-2017-20001 | Inadequate Encryption Strength vulnerability in AES Encryption Project AES Encryption The AES encryption project 7.x and 8.x for Drupal does not sufficiently prevent attackers from decrypting data, aka SA-CONTRIB-2017-027. | 7.5 |
| 2020-12-21 | CVE-2020-26263 | Inadequate Encryption Strength vulnerability in Tlslite-Ng Project Tlslite-Ng tlslite-ng is an open source python library that implements SSL and TLS cryptographic protocols. | 7.5 |
| 2020-11-19 | CVE-2020-7565 | Inadequate Encryption Strength vulnerability in Schneider-Electric Modicon M221 Firmware A CWE-326: Inadequate Encryption Strength vulnerability exists in Modicon M221 (all references, all versions) that could allow the attacker to break the encryption key when the attacker has captured the traffic between EcoStruxure Machine - Basic software and Modicon M221 controller. | 7.3 |
| 2020-11-12 | CVE-2020-17494 | Inadequate Encryption Strength vulnerability in Untangle Firewall NG Untangle Firewall NG before 16.0 uses MD5 for passwords. | 5.3 |
| 2020-11-12 | CVE-2020-8761 | Inadequate Encryption Strength vulnerability in Intel Converged Security and Manageability Engine Inadequate encryption strength in subsystem for Intel(R) CSME versions before 13.0.40 and 13.30.10 may allow an unauthenticated user to potentially enable information disclosure via physical access. | 4.6 |
| 2020-11-12 | CVE-2020-9128 | Inadequate Encryption Strength vulnerability in Huawei Fusioncompute 8.0.0 FusionCompute versions 8.0.0 have an insecure encryption algorithm vulnerability. | 4.4 |