Vulnerabilities > Inadequate Encryption Strength
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2020-02-28 | CVE-2015-5361 | Inadequate Encryption Strength vulnerability in Juniper Junos Background For regular, unencrypted FTP traffic, the FTP ALG can inspect the unencrypted control channel and open related sessions for the FTP data channel. | 6.5 |
| 2020-02-26 | CVE-2020-9337 | Inadequate Encryption Strength vulnerability in Golfbuddyglobal Course Manager 1.1 In GolfBuddy Course Manager 1.1, passwords are sent (with base64 encoding) via a GET request. | 6.5 |
| 2020-02-25 | CVE-2019-4557 | Inadequate Encryption Strength vulnerability in IBM Qradar Advisor 1.1/2.5.0 IBM Qradar Advisor 1.1 through 2.5 with Watson uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. | 7.5 |
| 2020-02-13 | CVE-2013-7287 | Inadequate Encryption Strength vulnerability in Mobileiron Sentry and Virtual Smartphone Platform MobileIron VSP < 5.9.1 and Sentry < 5.0 has an insecure encryption scheme. | 9.8 |
| 2020-02-12 | CVE-2013-7286 | Inadequate Encryption Strength vulnerability in ATT products MobileIron VSP < 5.9.1 and Sentry < 5.0 has a weak password obfuscation algorithm | 7.5 |
| 2020-02-07 | CVE-2019-13163 | Inadequate Encryption Strength vulnerability in Fujitsu products The Fujitsu TLS library allows a man-in-the-middle attack. | 5.9 |
| 2020-02-04 | CVE-2011-3629 | Inadequate Encryption Strength vulnerability in Joomla Joomla! Joomla! core 1.7.1 allows information disclosure due to weak encryption | 7.5 |
| 2020-01-24 | CVE-2020-5224 | Inadequate Encryption Strength vulnerability in Django-User-Sessions Project Django-User-Sessions In Django User Sessions (django-user-sessions) before 1.7.1, the views provided allow users to terminate specific sessions. | 8.8 |
| 2020-01-24 | CVE-2020-6966 | Inadequate Encryption Strength vulnerability in Gehealthcare products In ApexPro Telemetry Server Versions 4.2 and prior, CARESCAPE Telemetry Server v4.2 & prior, Clinical Information Center (CIC) Versions 4.X and 5.X, CARESCAPE Central Station (CSCS) Versions 1.X, the affected products utilize a weak encryption scheme for remote desktop control, which may allow an attacker to obtain remote code execution of devices on the network. | 10.0 |
| 2019-12-20 | CVE-2019-18263 | Inadequate Encryption Strength vulnerability in Philips products An issue was found in Philips Veradius Unity, Pulsera, and Endura Dual WAN Router, Veradius Unity (718132) with wireless option (shipped between 2016-August 2018), Veradius Unity (718132) with ViewForum option (shipped between 2016-August 2018), Pulsera (718095) and Endura (718075) with wireless option (shipped between 26-June-2017 through 07-August 2018), Pulsera (718095) and Endura (718075) with ViewForum option (shipped between 26-June-2017 through 07-August 2018). | 6.5 |