Vulnerabilities > Inadequate Encryption Strength
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-07 | CVE-2023-33283 | Inadequate Encryption Strength vulnerability in Marvalglobal MSM Marval MSM through 14.19.0.12476 uses a static encryption key for secrets. | 5.5 |
| 2023-06-02 | CVE-2023-23597 | Inadequate Encryption Strength vulnerability in Mozilla Firefox A compromised web child process could disable web security opening restrictions, leading to a new child process being spawned within the <code>file://</code> context. | 6.5 |
| 2023-06-02 | CVE-2023-29549 | Inadequate Encryption Strength vulnerability in Mozilla Firefox and Focus Under certain circumstances, a call to the <code>bind</code> function may have resulted in the incorrect realm. | 6.5 |
| 2023-05-24 | CVE-2023-33982 | Inadequate Encryption Strength vulnerability in Briarproject Briar Bramble Handshake Protocol (BHP) in Briar before 1.5.3 is not forward secure: eavesdroppers can decrypt network traffic between two accounts if they later compromise both accounts. | 5.9 |
| 2023-05-18 | CVE-2022-45453 | Inadequate Encryption Strength vulnerability in Acronis Cyber Protect 15 TLS/SSL weak cipher suites enabled. | 7.5 |
| 2023-05-17 | CVE-2023-1764 | Inadequate Encryption Strength vulnerability in Canon IJ Network Tool Canon IJ Network Tool/Ver.4.7.5 and earlier (supported OS: OS X 10.9.5-macOS 13),IJ Network Tool/Ver.4.7.3 and earlier (supported OS: OS X 10.7.5-OS X 10.8) allows an attacker to acquire sensitive information on the Wi-Fi connection setup of the printer from the communication of the software. | 6.5 |
| 2023-05-11 | CVE-2023-2443 | Inadequate Encryption Strength vulnerability in Rockwellautomation Thinmanager Rockwell Automation ThinManager product allows the use of medium strength ciphers. | 7.5 |
| 2023-05-10 | CVE-2023-30351 | Inadequate Encryption Strength vulnerability in Tenda CP3 Firmware 11.10.00.2211041355 Shenzen Tenda Technology IP Camera CP3 V11.10.00.2211041355 was discovered to contain a hard-coded default password for root which is stored using weak encryption. | 7.5 |
| 2023-05-01 | CVE-2023-2197 | Inadequate Encryption Strength vulnerability in Hashicorp Vault 1.13.0 HashiCorp Vault Enterprise 1.13.0 up to 1.13.1 is vulnerable to a padding oracle attack when using an HSM in conjunction with the CKM_AES_CBC_PAD or CKM_AES_CBC encryption mechanisms. An attacker with privileges to modify storage and restart Vault may be able to intercept or modify cipher text in order to derive Vault’s root key. | 2.5 |
| 2023-04-19 | CVE-2023-28124 | Inadequate Encryption Strength vulnerability in UI Desktop 0.55.1.2/0.55.3.17/0.59.1.71 Improper usage of symmetric encryption in UI Desktop for Windows (Version 0.59.1.71 and earlier) could allow users with access to UI Desktop configuration files to decrypt their content.This vulnerability is fixed in Version 0.62.3 and later. | 5.5 |