Vulnerabilities > Use of a Broken or Risky Cryptographic Algorithm
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2019-09-27 | CVE-2019-3736 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Dell EMC Integrated Data Protection Appliance Firmware 2.0/2.1/2.2 Dell EMC Integrated Data Protection Appliance versions prior to 2.3 contain a password storage vulnerability in the ACM component. | 7.2 |
| 2019-09-27 | CVE-2019-9399 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Google Android 10.0 The Print Service is susceptible to man in the middle attacks due to improperly used crypto. | 5.9 |
| 2019-09-16 | CVE-2019-16370 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Gradle The PGP signing plugin in Gradle before 6.0 relies on the SHA-1 algorithm, which might allow an attacker to replace an artifact with a different one that has the same SHA-1 message digest, a related issue to CVE-2005-4900. | 5.9 |
| 2019-09-09 | CVE-2019-16143 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Blake2 Blake2-Rust An issue was discovered in the blake2 crate before 0.8.1 for Rust. | 9.8 |
| 2019-09-04 | CVE-2019-12587 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Espressif Esp-Idf and Esp8266 Nonos SDK The EAP peer implementation in Espressif ESP-IDF 2.0.0 through 4.0.0 and ESP8266_NONOS_SDK 2.2.0 through 3.1.0 allows the installation of a zero Pairwise Master Key (PMK) after the completion of any EAP authentication method, which allows attackers in radio range to replay, decrypt, or spoof frames via a rogue access point. | 8.1 |
| 2019-08-30 | CVE-2018-18371 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Broadcom Advanced Secure Gateway and Symantec Proxysg The ASG/ProxySG FTP proxy WebFTP mode allows intercepting FTP connections where a user accesses an FTP server via a ftp:// URL in a web browser. | 6.5 |
| 2019-08-22 | CVE-2019-9155 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Openpgpjs A cryptographic issue in OpenPGP.js <=4.2.0 allows an attacker who is able provide forged messages and gain feedback about whether decryption of these messages succeeded to conduct an invalid curve attack in order to gain the victim's ECDH private key. | 5.9 |
| 2019-08-21 | CVE-2019-12621 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Cisco products A vulnerability in Cisco HyperFlex Software could allow an unauthenticated, remote attacker to perform a man-in-the-middle attack. | 7.4 |
| 2019-08-20 | CVE-2019-5035 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Google Nest CAM IQ Indoor Firmware 4620002 An exploitable information disclosure vulnerability exists in the Weave PASE pairing functionality of the Nest Cam IQ Indoor, version 4620002. | 9.0 |
| 2019-08-15 | CVE-2019-9013 | Use of a Broken or Risky Cryptographic Algorithm vulnerability in Codesys products An issue was discovered in 3S-Smart CODESYS V3 products. | 8.8 |