CWE-328: CWE-328

This vulnerability in EVE OS's measured boot mechanism allows attackers to bypass TPM-based encryption of the sensitive 'vault' directory. The system ...

This vulnerability allows attackers to bypass MD5 checksum validation in ABB industrial control systems, potentially enabling malicious code execution...

Actualizer versions before 1.2.0 use OpenSSL's SHA512 for password hashing instead of stronger algorithms like Yescript/Argon2i, making password hashe...

CVE-2024-23589 is a cryptographic weakness vulnerability in HCL Glovius Cloud where outdated hash algorithms allow attackers to efficiently guess inpu...

This vulnerability in pnpm (package manager) uses MD5 hashing for path shortening, which can cause collisions where two different libraries get stored...

IBM Sterling Secure Proxy uses weak cryptographic algorithms that could allow attackers to decrypt sensitive information transmitted through the proxy...

This CVE describes an MD5 hash collision vulnerability in AWS SageMaker Python SDK's workflow component. It allows different workflow configurations t...

Dragonfly versions before 2.1.0 use MD5 hashing for file verification, which is cryptographically broken and allows attackers to create malicious file...

This vulnerability in Google's gVisor container runtime allows remote attackers to calculate a local IP address and per-boot identifier using weak has...

Dozzle versions before 8.5.3 use SHA-256 for password hashing, which is vulnerable to rainbow table attacks. This allows attackers with access to pass...

This vulnerability allows authenticated Mattermost users to access unauthorized posts and manipulate link previews through hash collision attacks on F...