Falhas do tipo CWE-323

37 resultados
CVE-2017-13082Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11r allows reinstallation of the Pairwise Transient Key (PTK) Temporal Key (TK)EPSS 4.6%CVE-2017-7902A "Reusing a Nonce, Key Pair in Encryption" issue was discovered in Rockwell Automation Allen-Bradley MicroLogix 1100 programmable-logic conEPSS 2.6%CVE-2017-13080Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the group key handshake, allowing an attaEPSS 2.3%CVE-2017-13084Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Station-To-Station-Link (STSL) Transient Key (STK) during the PeerKey hanEPSS 2.2%CVE-2017-13079Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during theEPSS 2.1%CVE-2017-13078Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Group Temporal Key (GTK) during the four-way handshake, allowing an attacEPSS 2.1%CVE-2017-13086Wi-Fi Protected Access (WPA and WPA2) allows reinstallation of the Tunneled Direct-Link Setup (TDLS) Peer Key (TPK) during the TDLS handshakEPSS 2.0%CVE-2017-13081Wi-Fi Protected Access (WPA and WPA2) that supports IEEE 802.11w allows reinstallation of the Integrity Group Temporal Key (IGTK) during theEPSS 2.0%CVE-2017-13088Wi-Fi Protected Access (WPA and WPA2) that support 802.11v allows reinstallation of the Integrity Group Temporal Key (IGTK) when processing EPSS 1.8%CVE-2021-32791MEDIUMHardcoded static IV and AAD with a reused key in AES GCM encryption in mod_auth_openidcEPSS 1.5%CVE-2020-1759MEDIUMA vulnerability was found in Red Hat Ceph Storage 4 and Red Hat Openshift Container Storage 4.2 where, A nonce reuse vulnerability was discoEPSS 1.4%CVE-2023-28997MEDIUMNextcloud Desktop: Initialization vector reuse in E2EE allows malicious server admin to break, manipulate, access filesEPSS 1.1%CVE-2019-7593MEDIUMMetasys use of shared RSA key pairsEPSS 0.8%CVE-2024-23688MEDIUMConsensys Discovery Nonce ReuseEPSS 0.5%CVE-2026-49952CRITICALDiscuz! X5.0 Authentication Bypass via dbbak.php Encryption OracleEPSS 0.5%CVE-2026-3559HIGHPhilips Hue Bridge HomeKit Accessory Protocol Static Nonce Authentication Bypass VulnerabilityEPSS 0.4%CVE-2024-11022MEDIUMSICK InspectorP61x and SICK InspectorP62x are vulnerable for a replay attackEPSS 0.4%CVE-2023-4680MEDIUMVault's Transit Secrets Engine Allowed Nonce Specified without Convergent EncryptionEPSS 0.4%CVE-2026-3099MEDIUMLibsoup: libsoup: authentication bypass via digest authentication replay attackEPSS 0.4%CVE-2022-37660MEDIUMIn hostapd 2.10 and earlier, the PKEX code remains active even after a successful PKEX association. An attacker that successfully bootstrappEPSS 0.3%