Vulnerabilities > Key Management Errors
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2017-03-01 | CVE-2016-2880 | Key Management Errors vulnerability in IBM Qradar Security Information and Event Manager IBM QRadar 7.2 stores the encryption key used to encrypt the service account password which can be obtained by a local user. | 2.1 |
2017-02-01 | CVE-2016-9963 | Key Management Errors vulnerability in multiple products Exim before 4.87.1 might allow remote attackers to obtain the private DKIM signing key via vectors related to log files and bounce messages. | 2.6 |
2017-01-30 | CVE-2016-2217 | Key Management Errors vulnerability in Dest-Unreach Socat 1.7.3.0/2.0.0 The OpenSSL address implementation in Socat 1.7.3.0 and 2.0.0-b8 does not use a prime number for the DH, which makes it easier for remote attackers to obtain the shared secret. | 5.0 |
2017-01-13 | CVE-2016-6886 | Key Management Errors vulnerability in Matrixssl 3.8.2/3.8.3 The pstm_reverse function in MatrixSSL before 3.8.4 allows remote attackers to cause a denial of service (invalid memory read and crash) via a (1) zero value or (2) the key's modulus for the secret key during RSA key exchange. | 5.0 |
2017-01-05 | CVE-2016-10011 | Key Management Errors vulnerability in Openbsd Openssh authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local users to obtain sensitive private-key information by leveraging access to a privilege-separated child process. | 5.5 |
2016-12-15 | CVE-2015-8542 | Key Management Errors vulnerability in Open-Xchange OX Guard 2.0.0 An issue was discovered in Open-Xchange Guard before 2.2.0-rev8. | 4.0 |