CWE-326: CWE-326

CVE-2024-37034 is an authentication bypass vulnerability in Couchbase Server where credentials may not be properly negotiated with SCRAM-SHA encryptio...

This vulnerability affects Siemens SIPROTEC 5 protection devices and communication modules, allowing man-in-the-middle attackers to decrypt sensitive ...

This vulnerability in Google Chrome's App-Bound Encryption implementation on Windows allows a local attacker to read potentially sensitive information...

The Linux kernel's Bluetooth L2CAP implementation fails to validate encryption key size on incoming connections, allowing connections with insufficien...

This vulnerability in Easy-RSA allows a local attacker to more easily brute-force the private CA key when it's created using OpenSSL 3. The weak encry...

This vulnerability in Apache Answer uses weak MD5 hashing of user email addresses for Gravatar integration, potentially exposing email addresses throu...

This vulnerability involves inadequate encryption strength in .NET, .NET Framework, and Visual Studio, allowing an authorized attacker to disclose sen...

This vulnerability allows a local unprivileged attacker to extract data from update images in Sprecher Automation SPRECON-E products due to insufficie...

CVE-2026-0510 is a cryptographic weakness in SAP NetWeaver Application Server for Java's User Management Engine where obsolete encryption algorithms p...