CVEs classified under CWE-320, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (50)
CVE-2016-10467 — CVSS 9.8 (critical): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Automobile and Snapdragon Mobile SD 210/SD 212/SD 205…
CVE-2016-10421 — CVSS 9.8 (critical): In Android before 2018-04-05 or earlier security patch level on Qualcomm Snapdragon Mobile and Snapdragon Wear MDM9206, MDM9607, MDM9615…
CVE-2018-0124 — CVSS 9.8 (critical): A vulnerability in Cisco Unified Communications Domain Manager could allow an unauthenticated, remote attacker to bypass security…
CVE-2015-0936 — CVSS 9.8 (critical): Ceragon FibeAir IP-10 have a default SSH public key in the authorized_keys file for the mateidu user, which allows remote attackers to…
CVE-2015-4166 — CVSS 9.8 (critical): Cloudera Key Trustee Server before 5.4.3 does not store keys synchronously, which might allow attackers to have unspecified impact via…
CVE-2024-36391 — CVSS 9.1 (critical): MileSight DeviceHub - CWE-320: Key Management Errors may allow Authentication Bypass and Man-In-The-Middle Traffic
CVE-2019-5672 — CVSS 9.1 (critical): NVIDIA Jetson TX1 and TX2 contain a vulnerability in the Linux for Tegra (L4T) operating system (on all versions prior to R28.3) where the…
CVE-2015-8542 — CVSS 8.8 (high): An issue was discovered in Open-Xchange Guard before 2.2.0-rev8. The "getprivkeybyid" API call is used to download a PGP Private Key for a…
CVE-2015-0839 — CVSS 8.1 (high): The hp-plugin utility in HP Linux Imaging and Printing (HPLIP) makes it easier for man-in-the-middle attackers to execute arbitrary code by…
CVE-2016-2880 — CVSS 7.8 (high): IBM QRadar 7.2 stores the encryption key used to encrypt the service account password which can be obtained by a local user. IBM Reference…
CVE-2019-9894 — CVSS 7.5 (high): A remotely triggerable memory overwrite in RSA key exchange in PuTTY before 0.71 can occur before host key verification.
CVE-2017-13887 — CVSS 7.5 (high): In macOS High Sierra before 10.13.2, a logic issue existed in APFS when deleting keys during hibernation. This was addressed with improved…
CVE-2018-0732 — CVSS 7.5 (high): During key agreement in a TLS handshake using a DH(E) based ciphersuite a malicious server can send a very large prime value to the client…
CVE-2015-0153 — CVSS 7.5 (high): D-Link DIR-815 devices with firmware before 2.07.B01 allow remote attackers to obtain sensitive information by leveraging cleartext storage…
CVE-2018-9234 — CVSS 7.5 (high): GnuPG 2.2.4 and 2.2.5 does not enforce a configuration in which key certification requires an offline master Certify key, which results in…
CVE-2015-7503 — CVSS 7.5 (high): Zend Framework before 2.4.9, zend-framework/zend-crypt 2.4.x before 2.4.9, and 2.5.x before 2.5.2 allows remote attackers to recover the…
CVE-2016-6879 — CVSS 7.5 (high): The X509_Certificate::allowed_usage function in botan 1.11.x before 1.11.31 might allow attackers to have unspecified impact by leveraging…
CVE-2016-6886 — CVSS 7.5 (high): The pstm_reverse function in MatrixSSL before 3.8.4 allows remote attackers to cause a denial of service (invalid memory read and crash)…
CVE-2013-2233 — CVSS 7.4 (high): Ansible before 1.2.1 makes it easier for remote attackers to conduct man-in-the-middle attacks by leveraging failure to cache SSH host keys.
CVE-2026-6580 — CVSS 7.3 (high): A security vulnerability has been detected in liangliangyy DjangoBlog up to 2.1.0.0. Affected is an unknown function of the file…
CVE-2014-2361 — CVSS 7.2 (high): OleumTech WIO DH2 Wireless Gateway and Sensor Wireless I/O Modules, when BreeZ is used, do not require authentication for reading the site…
CVE-2018-15397 — CVSS 6.8 (medium): A vulnerability in the implementation of Traffic Flow Confidentiality (TFC) over IPsec functionality in Cisco Adaptive Security Appliance…
CVE-2020-1688 — CVSS 6.5 (medium): On Juniper Networks SRX Series and NFX Series, a local authenticated user with access to the shell may obtain the Web API service private…
CVE-2016-8614 — CVSS 6.3 (medium): A flaw was found in Ansible before version 2.2.0. The apt_key module does not properly verify key fingerprints, allowing remote adversary…
CVE-2016-10011 — CVSS 6.2 (medium): authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local…
CVE-2024-40593 — CVSS 6.0 (medium): A key management errors vulnerability in Fortinet FortiAnalyzer 7.4.0 through 7.4.2, FortiAnalyzer 7.2.0 through 7.2.5, FortiAnalyzer 7.0…
CVE-2018-20187 — CVSS 5.9 (medium): A side-channel issue was discovered in Botan before 2.9.0. An attacker capable of precisely measuring the time taken for ECC key generation…
CVE-2016-9963 — CVSS 5.9 (medium): Exim before 4.87.1 might allow remote attackers to obtain the private DKIM signing key via vectors related to log files and bounce messages.
CVE-2026-7306 — CVSS 5.6 (medium): A security vulnerability has been detected in Xuxueli xxl-job up to 3.3.2. The impacted element is an unknown function of the file…
CVE-2026-7018 — CVSS 5.6 (medium): A vulnerability was determined in Datavane Datavines up to 13607645e14a4982468cfdbcf75c85cde63bae71. The affected element is an unknown…
CVE-2025-13948 — CVSS 5.6 (medium): A vulnerability was determined in opsre go-ldap-admin up to 20251011. This issue affects some unknown processing of the file…
CVE-2025-13877 — CVSS 5.6 (medium): A vulnerability was detected in nocobase up to 1.9.4/2.0.0-alpha.37. The affected element is an unknown function of the file…
CVE-2025-11290 — CVSS 5.6 (medium): A vulnerability was identified in CRMEB up to 5.6.1. This affects an unknown function of the component JWT HMAC Secret Handler. Such…
CVE-2017-18323 — CVSS 5.5 (medium): Cryptographic key material leaked in TDSCDMA RRC debug messages in snapdragon automobile, snapdragon mobile and snapdragon wear in versions…
CVE-2017-18319 — CVSS 5.5 (medium): Information leak in UIM API debug messages in snapdragon mobile and snapdragon wear in versions MDM9206, MDM9607, MDM9615, MDM9625…
CVE-2026-8739 — CVSS 5.3 (medium): A vulnerability was detected in Sanluan PublicCMS 5.202506.d. The affected element is the function getSignKey of the file…
CVE-2026-8243 — CVSS 5.3 (medium): A vulnerability was determined in Industrial Application Software IAS Canias ERP 8.03. This affects an unknown function of the component…
CVE-2026-5549 — CVSS 5.3 (medium): A vulnerability was determined in Tenda AC10 16.03.10.10_multi_TDE01. Affected by this issue is some unknown functionality of the file…
CVE-2026-5527 — CVSS 5.3 (medium): A weakness has been identified in Tenda 4G03 Pro 1.0/1.0re/01.bin/04.03.01.53. Affected by this issue is some unknown functionality of the…
CVE-2019-9150 — CVSS 5.3 (medium): Mailvelope prior to 3.3.0 does not require user interaction to import public keys shown on web page. This functionality can be tricked to…
CVE-2018-7559 — CVSS 5.3 (medium): An issue was discovered in OPC UA .NET Standard Stack and Sample Code before GitHub commit 2018-04-12, and OPC UA .NET Legacy Stack and…
CVE-2016-2217 — CVSS 5.3 (medium): The OpenSSL address implementation in Socat 1.7.3.0 and 2.0.0-b8 does not use a prime number for the DH, which makes it easier for remote…
CVE-2026-11505 — CVSS 5.0 (medium): A flaw has been found in GL.iNet A1300, AX1800, AXT1800, MT2500, MT3000, MT6000, X3000 and XE3000 4.8.x. This affects an unknown function…
CVE-2025-12615 — CVSS 5.0 (medium): A security vulnerability has been detected in PHPGurukul News Portal 1.0. The affected element is an unknown function of the file…
CVE-2025-10250 — CVSS 5.0 (medium): A weakness has been identified in DJI Mavic Spark, Mavic Air and Mavic Mini 01.00.0500. Affected is an unknown function of the component…
CVE-2025-3177 — CVSS 5.0 (medium): A vulnerability was found in FastCMS 0.1.5. It has been declared as critical. This vulnerability affects unknown code of the component JWT…
CVE-2018-7534 — CVSS 4.7 (medium): In Stealth Authorization Server before 3.3.017.0 in Unisys Stealth Solution, an encryption key may be left in memory.
CVE-2026-5622 — CVSS 3.7 (low): A vulnerability was determined in hcengineering Huly Platform 0.7.382. Affected by this issue is some unknown functionality of the file…
CVE-2026-4588 — CVSS 3.7 (low): A vulnerability was determined in kalcaddle kodbox 1.64. Impacted is the function shareSafeGroup of the file /workspace/source-code/app/cont…