CVSS: 5.9EPSS: 0%CPEs: 574EXPL: 0CVE-2019-13163
https://notcve.org/view.php?id=CVE-2019-13163
07 Feb 2020 — The Fujitsu TLS library allows a man-in-the-middle attack. This affects Interstage Application Development Cycle Manager V10 and other versions, Interstage Application Server V12 and other versions, Interstage Business Application Manager V2 and other versions, Interstage Information Integrator V11 and other versions, Interstage Job Workload Server V8, Interstage List Works V10 and other versions, Interstage Studio V12 and other versions, Interstage Web Server Express V11, Linkexpress V5, Safeauthor V3, Ser... • https://www.fujitsu.com/jp/products/software/resources/condition/security/products-fujitsu/solution/interstage-systemwalker-tls-202001.html • CWE-326: Inadequate Encryption Strength •
CVSS: 10.0EPSS: 48%CPEs: 160EXPL: 0CVE-2015-2808 – SSL/TLS: "Invariance Weakness" vulnerability in RC4 stream cipher
https://notcve.org/view.php?id=CVE-2015-2808
01 Apr 2015 — The RC4 algorithm, as used in the TLS protocol and SSL protocol, does not properly combine state data with key data during the initialization phase, which makes it easier for remote attackers to conduct plaintext-recovery attacks against the initial bytes of a stream by sniffing network traffic that occasionally relies on keys affected by the Invariance Weakness, and then using a brute-force approach involving LSB values, aka the "Bar Mitzvah" issue. El algoritmo RC4, utilizado en el protocolo TLS y el prot... • http://h20564.www2.hpe.com/hpsc/doc/public/display?docId=emr_na-c04779034 • CWE-327: Use of a Broken or Risky Cryptographic Algorithm •
CVSS: 6.3EPSS: 0%CPEs: 16EXPL: 0CVE-2013-3838
https://notcve.org/view.php?id=CVE-2013-3838
16 Oct 2013 — Unspecified vulnerability in Oracle SPARC Enterprise T & M Series Servers running Sun System Firmware before 6.7.13 for SPARC T1, 7.4.6.c for SPARC T2, 8.3.0.b for SPARC T3 & T4, 9.0.0.d for SPARC T5 and 9.0.1.e for SPARC M5 allows local users to affect availability via unknown vectors related to Sun System Firmware/Hypervisor. Vulnerabilidad no especificada en Oracle SPARC Enterprise T & Servers Serie M con Sun System Firmware 6.7.13 anterior a SPARC T1, 7.4.6.c para SPARC T2, 8.3.0.b para SPARC T3 y T4, 9... • http://www.oracle.com/technetwork/topics/security/cpuoct2013-1899837.html •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2013-3773
https://notcve.org/view.php?id=CVE-2013-3773
17 Jul 2013 — Unspecified vulnerability in the SPARC Enterprise M Series Servers component in Oracle and Sun Systems Products Suite XCP 1114 and earlier allows remote attackers to affect availability via vectors related to XSCF Control Package (XCP). Vulnerabilidad no especificada en el componente SPARC Enterprise M Series Servers en Oracle y Sun Systems Products Suite XCP 1114 y anteriores permite a atacantes remotos afectar la disponibilidad mediante vectores relacionados con XSCF Control Package (XCP). • http://osvdb.org/95311 •
CVSS: 5.9EPSS: 93%CPEs: 34EXPL: 0CVE-2013-2566 – Gentoo Linux Security Advisory 201406-19
https://notcve.org/view.php?id=CVE-2013-2566
14 Mar 2013 — The RC4 algorithm, as used in the TLS protocol and SSL protocol, has many single-byte biases, which makes it easier for remote attackers to conduct plaintext-recovery attacks via statistical analysis of ciphertext in a large number of sessions that use the same plaintext. El algoritmo RC4, tal como se usa en el protocolo TLS y protocolo SSL, tiene muchos "single-byte biases", lo que hace que sea más fácil para atacantes remotos realizar ataques de recuperación de texto claro a través de análisis estadístico... • http://blog.cryptographyengineering.com/2013/03/attack-of-week-rc4-is-kind-of-broken-in.html • CWE-326: Inadequate Encryption Strength •
CVSS: 7.5EPSS: 0%CPEs: 6EXPL: 0CVE-2012-1693
https://notcve.org/view.php?id=CVE-2012-1693
03 May 2012 — Unspecified vulnerability in Oracle SPARC Enterprise M Series Servers XCP 1110 allows remote attackers to affect availability, related to XSCF Control Package (XCP). Vulnerabilidad no especificada en Oracle SPARC Enterprise M Series Servers XCP v1110 permite a atacantes remotos afectar a la disponibilidad, en relación con XSCF Control Package (XCP). • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 •
CVSS: 5.5EPSS: 0%CPEs: 6EXPL: 0CVE-2012-0548
https://notcve.org/view.php?id=CVE-2012-0548
03 May 2012 — Unspecified vulnerability in Oracle SPARC Enterprise M Series Servers XCP 1110 and earlier allows local users to affect confidentiality, related to XSCF Control Package (XCP). Vulnerabilidad no especificada en Oracle SPARC Enterprise M Series Servers XCP v1110 y anteriores permite a usuarios locales afectar la confidencialidad, en relación con XSCF Control Package (XCP). • http://www.mandriva.com/security/advisories?name=MDVSA-2013:150 •
CVSS: 9.8EPSS: 0%CPEs: 6EXPL: 0CVE-2011-2299
https://notcve.org/view.php?id=CVE-2011-2299
21 Jul 2011 — Unspecified vulnerability in Oracle SPARC Enterprise M3000, M4000, M5000, M8000, and M9000 XCP 1101 and earlier allows remote attackers to affect confidentiality, integrity, and availability, related to XSCF Control Package (XCP). Vulnerabilidad no especificada en Oracle SPARC Enterprise M3000, M4000, M5000, M8000, M9000 y XCP 1101 y anteriores permite a atacantes remotos afectar a la confidencialidad, integridad y disponibilidad, en relación con el paquete de control de XSCF (XCP). • http://www.oracle.com/technetwork/topics/security/cpujuly2011-313328.html •