Vulnerabilities > Use of a Broken or Risky Cryptographic Algorithm
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-12-27 | CVE-2021-45696 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Sha2 Project Sha2 0.9.7 An issue was discovered in the sha2 crate 0.9.7 before 0.9.8 for Rust. | 9.8 |
| 2021-12-26 | CVE-2021-45512 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Netgear products Certain NETGEAR devices are affected by weak cryptography. | 9.8 |
| 2021-12-25 | CVE-2021-45485 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products In the IPv6 implementation in the Linux kernel before 5.13.3, net/ipv6/output_core.c has an information leak because of certain use of a hash table which, although big, doesn't properly consider that IPv6-based attackers can typically choose among many IPv6 source addresses. | 7.5 |
| 2021-12-25 | CVE-2021-45486 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products In the IPv4 implementation in the Linux kernel before 5.12.4, net/ipv4/route.c has an information leak because the hash table is very small. | 3.5 |
| 2021-12-23 | CVE-2017-2488 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Apple Remote Desktop A cryptographic weakness existed in the authentication protocol of Remote Desktop. | 7.5 |
| 2021-12-23 | CVE-2021-43989 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Myscada Mypro 7/7.0.26 mySCADA myPRO Versions 8.20.0 and prior stores passwords using MD5, which may allow an attacker to crack the previously retrieved password hashes. | 7.5 |
| 2021-12-21 | CVE-2021-45450 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products In Mbed TLS before 2.28.0 and 3.x before 3.1.0, psa_cipher_generate_iv and psa_cipher_encrypt allow policy bypass or oracle-based decryption when the output buffer is at memory locations accessible to an untrusted application. | 7.5 |
| 2021-12-21 | CVE-2021-45451 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products In Mbed TLS before 3.1.0, psa_aead_generate_nonce allows policy bypass or oracle-based decryption when the output buffer is at memory locations accessible to an untrusted application. | 7.5 |
| 2021-12-13 | CVE-2021-39058 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in IBM Spectrum Copy Data Management 2.2.0.0/2.2.13 IBM Spectrum Copy Data Management 2.2.13 and earlier uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. | 7.5 |
| 2021-12-09 | CVE-2021-39002 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in multiple products IBM DB2 for Linux, UNIX and Windows (includes DB2 Connect Server) 9.7, 10.1, 10.5, 11.1, and 11.5 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information. | 7.5 |