CWE-326
Allowed-with-ReviewInadequate Encryption Strength
Abstraction: Class · Status: Draft
The product stores or transmits sensitive data using an encryption scheme that is theoretically sound, but is not strong enough for the level of protection required.
631 vulnerabilities reference this CWE, most recent first.
GHSA-7QF4-RMVC-8MV4
Vulnerability from github – Published: 2022-05-07 00:00 – Updated: 2022-05-14 00:01Brocade SANnav before SANnav 2.2.0 application uses the Blowfish symmetric encryption algorithm for the storage of passwords. This could allow an authenticated attacker to decrypt stored account passwords.
{
"affected": [],
"aliases": [
"CVE-2022-28164"
],
"database_specific": {
"cwe_ids": [
"CWE-326"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2022-05-06T16:15:00Z",
"severity": "MODERATE"
},
"details": "Brocade SANnav before SANnav 2.2.0 application uses the Blowfish symmetric encryption algorithm for the storage of passwords. This could allow an authenticated attacker to decrypt stored account passwords.",
"id": "GHSA-7qf4-rmvc-8mv4",
"modified": "2022-05-14T00:01:18Z",
"published": "2022-05-07T00:00:40Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2022-28164"
},
{
"type": "WEB",
"url": "https://www.broadcom.com/support/fibre-channel-networking/security-advisories/brocade-security-advisory-2022-1843"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-7QRQ-JCW5-R7JX
Vulnerability from github – Published: 2023-11-09 15:30 – Updated: 2023-11-20 18:30The leakage of channel access token in taketorinoyu Line 13.6.1 allows remote attackers to send malicious notifications to victims.
{
"affected": [],
"aliases": [
"CVE-2023-47368"
],
"database_specific": {
"cwe_ids": [
"CWE-326"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2023-11-09T15:15:08Z",
"severity": "MODERATE"
},
"details": "The leakage of channel access token in taketorinoyu Line 13.6.1 allows remote attackers to send malicious notifications to victims.",
"id": "GHSA-7qrq-jcw5-r7jx",
"modified": "2023-11-20T18:30:45Z",
"published": "2023-11-09T15:30:30Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2023-47368"
},
{
"type": "WEB",
"url": "https://github.com/syz913/CVE-reports/blob/main/taketorinoyu.md"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-7V5V-9V8R-W864
Vulnerability from github – Published: 2022-05-13 01:09 – Updated: 2022-07-13 15:29Apache CXF 2.5.x before 2.5.10, 2.6.x before CXF 2.6.7, and 2.7.x before CXF 2.7.4 does not verify that a specified cryptographic algorithm is allowed by the WS-SecurityPolicy AlgorithmSuite definition before decrypting, which allows remote attackers to force CXF to use weaker cryptographic algorithms than intended and makes it easier to decrypt communications, aka "XML Encryption backwards compatibility attack."
{
"affected": [
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.cxf:cxf-rt-transports-http"
},
"ranges": [
{
"events": [
{
"introduced": "2.5.0"
},
{
"fixed": "2.5.10"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.cxf:cxf-rt-transports-http"
},
"ranges": [
{
"events": [
{
"introduced": "2.6.0"
},
{
"fixed": "2.6.7"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "Maven",
"name": "org.apache.cxf:cxf-rt-transports-http"
},
"ranges": [
{
"events": [
{
"introduced": "2.7.0"
},
{
"fixed": "2.7.4"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2012-5575"
],
"database_specific": {
"cwe_ids": [
"CWE-326"
],
"github_reviewed": true,
"github_reviewed_at": "2022-07-13T15:29:33Z",
"nvd_published_at": "2013-08-19T23:55:00Z",
"severity": "MODERATE"
},
"details": "Apache CXF 2.5.x before 2.5.10, 2.6.x before CXF 2.6.7, and 2.7.x before CXF 2.7.4 does not verify that a specified cryptographic algorithm is allowed by the WS-SecurityPolicy AlgorithmSuite definition before decrypting, which allows remote attackers to force CXF to use weaker cryptographic algorithms than intended and makes it easier to decrypt communications, aka \"XML Encryption backwards compatibility attack.\"",
"id": "GHSA-7v5v-9v8r-w864",
"modified": "2022-07-13T15:29:33Z",
"published": "2022-05-13T01:09:21Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2012-5575"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=880443"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf%40%3Ccommits.cxf.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/r36e44ffc1a9b365327df62cdfaabe85b9a5637de102cea07d79b2dbf@%3Ccommits.cxf.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c%40%3Ccommits.cxf.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rc774278135816e7afc943dc9fc78eb0764f2c84a2b96470a0187315c@%3Ccommits.cxf.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6%40%3Ccommits.cxf.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rd49aabd984ed540c8ff7916d4d79405f3fa311d2fdbcf9ed307839a6@%3Ccommits.cxf.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4%40%3Ccommits.cxf.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rec7160382badd3ef4ad017a22f64a266c7188b9ba71394f0d321e2d4@%3Ccommits.cxf.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e%40%3Ccommits.cxf.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rfb87e0bf3995e7d560afeed750fac9329ff5f1ad49da365129b7f89e@%3Ccommits.cxf.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4%40%3Ccommits.cxf.apache.org%3E"
},
{
"type": "WEB",
"url": "https://lists.apache.org/thread.html/rff42cfa5e7d75b7c1af0e37589140a8f1999e578a75738740b244bd4@%3Ccommits.cxf.apache.org%3E"
},
{
"type": "WEB",
"url": "http://cxf.apache.org/cve-2012-5575.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0833.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0834.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0839.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0873.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0874.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0875.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0876.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-0943.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-1028.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-1143.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2013-1437.html"
},
{
"type": "WEB",
"url": "http://www.nds.ruhr-uni-bochum.de/research/publications/backwards-compatibility"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/60043"
}
],
"schema_version": "1.4.0",
"severity": [],
"summary": "Inadequate Encryption Strength in Apache CXF"
}
GHSA-7W6P-V52H-GG48
Vulnerability from github – Published: 2022-05-17 02:30 – Updated: 2022-05-17 02:30An issue was discovered in certain Apple products. Pages before 6.1, Numbers before 4.1, and Keynote before 7.1 on macOS and Pages before 3.1, Numbers before 3.1, and Keynote before 3.1 on iOS are affected. The issue involves the "Export" component. It allows users to bypass iWork PDF password protection by leveraging use of 40-bit RC4.
{
"affected": [],
"aliases": [
"CVE-2017-2391"
],
"database_specific": {
"cwe_ids": [
"CWE-326"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2017-04-02T01:59:00Z",
"severity": "MODERATE"
},
"details": "An issue was discovered in certain Apple products. Pages before 6.1, Numbers before 4.1, and Keynote before 7.1 on macOS and Pages before 3.1, Numbers before 3.1, and Keynote before 3.1 on iOS are affected. The issue involves the \"Export\" component. It allows users to bypass iWork PDF password protection by leveraging use of 40-bit RC4.",
"id": "GHSA-7w6p-v52h-gg48",
"modified": "2022-05-17T02:30:41Z",
"published": "2022-05-17T02:30:41Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2017-2391"
},
{
"type": "WEB",
"url": "https://support.apple.com/HT207595"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/97126"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1038134"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1038135"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1038136"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-7WHV-C26V-WRW2
Vulnerability from github – Published: 2022-04-30 18:22 – Updated: 2024-02-14 18:30Videsh Sanchar Nigam Limited (VSNL) Integrated Dialer Software 1.2.000, when the "Save Password" option is used, stores the password with a weak encryption scheme (one-to-one mapping) in a registry key, which allows local users to obtain and decrypt the password.
{
"affected": [],
"aliases": [
"CVE-2002-1946"
],
"database_specific": {
"cwe_ids": [
"CWE-326"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2002-12-31T05:00:00Z",
"severity": "LOW"
},
"details": "Videsh Sanchar Nigam Limited (VSNL) Integrated Dialer Software 1.2.000, when the \"Save Password\" option is used, stores the password with a weak encryption scheme (one-to-one mapping) in a registry key, which allows local users to obtain and decrypt the password.",
"id": "GHSA-7whv-c26v-wrw2",
"modified": "2024-02-14T18:30:23Z",
"published": "2022-04-30T18:22:11Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2002-1946"
},
{
"type": "WEB",
"url": "http://archives.neohapsis.com/archives/bugtraq/2002-10/0438.html"
},
{
"type": "WEB",
"url": "http://www.iss.net/security_center/static/10517.php"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-7XH5-P97V-CG6Q
Vulnerability from github – Published: 2022-05-05 00:00 – Updated: 2022-05-12 00:00Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks. This issue affects: Secomea SiteManager All versions prior to 9.7. Secomea LinkManager versions prior to 9.7. Secomea GateManager versions prior to 9.7.
{
"affected": [],
"aliases": [
"CVE-2021-32010"
],
"database_specific": {
"cwe_ids": [
"CWE-326"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2022-05-04T14:15:00Z",
"severity": "HIGH"
},
"details": "Inadequate Encryption Strength vulnerability in TLS stack of Secomea SiteManager, LinkManager, GateManager may facilitate man in the middle attacks. This issue affects: Secomea SiteManager All versions prior to 9.7. Secomea LinkManager versions prior to 9.7. Secomea GateManager versions prior to 9.7.",
"id": "GHSA-7xh5-p97v-cg6q",
"modified": "2022-05-12T00:00:36Z",
"published": "2022-05-05T00:00:25Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-32010"
},
{
"type": "WEB",
"url": "https://www.secomea.com/support/cybersecurity-advisory"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
}
]
}
GHSA-7XHQ-2XXJ-QPP5
Vulnerability from github – Published: 2026-04-22 18:31 – Updated: 2026-04-22 18:31ELBA5 5.8.0 contains a remote code execution vulnerability that allows attackers to obtain database credentials and execute arbitrary commands with SYSTEM level permissions. Attackers can connect to the database using default connector credentials, decrypt the DBA password, and execute commands via the xp_cmdshell stored procedure or add backdoor users to the BEDIENER table.
{
"affected": [],
"aliases": [
"CVE-2018-25272"
],
"database_specific": {
"cwe_ids": [
"CWE-326"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2026-04-22T16:16:48Z",
"severity": "CRITICAL"
},
"details": "ELBA5 5.8.0 contains a remote code execution vulnerability that allows attackers to obtain database credentials and execute arbitrary commands with SYSTEM level permissions. Attackers can connect to the database using default connector credentials, decrypt the DBA password, and execute commands via the xp_cmdshell stored procedure or add backdoor users to the BEDIENER table.",
"id": "GHSA-7xhq-2xxj-qpp5",
"modified": "2026-04-22T18:31:44Z",
"published": "2026-04-22T18:31:44Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-25272"
},
{
"type": "WEB",
"url": "https://www.elba.at"
},
{
"type": "WEB",
"url": "https://www.exploit-db.com/exploits/45905"
},
{
"type": "WEB",
"url": "https://www.vulncheck.com/advisories/elba5-remote-code-execution-via-database-access"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N/E:X/CR:X/IR:X/AR:X/MAV:X/MAC:X/MAT:X/MPR:X/MUI:X/MVC:X/MVI:X/MVA:X/MSC:X/MSI:X/MSA:X/S:X/AU:X/R:X/V:X/RE:X/U:X",
"type": "CVSS_V4"
}
]
}
GHSA-7XPV-834V-X9RJ
Vulnerability from github – Published: 2025-05-28 18:33 – Updated: 2025-05-28 18:33IBM Sterling Secure Proxy 6.0.0.0 through 6.0.3.1, 6.1.0.0 through 6.1.0.0, and 6.2.0.0 through 6.2.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.
{
"affected": [],
"aliases": [
"CVE-2024-38341"
],
"database_specific": {
"cwe_ids": [
"CWE-326",
"CWE-328"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2025-05-28T16:15:32Z",
"severity": "MODERATE"
},
"details": "IBM Sterling Secure Proxy 6.0.0.0 through 6.0.3.1, 6.1.0.0 through 6.1.0.0, and 6.2.0.0 through 6.2.0.1 uses weaker than expected cryptographic algorithms that could allow an attacker to decrypt highly sensitive information.",
"id": "GHSA-7xpv-834v-x9rj",
"modified": "2025-05-28T18:33:27Z",
"published": "2025-05-28T18:33:27Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2024-38341"
},
{
"type": "WEB",
"url": "https://www.ibm.com/support/pages/node/7234888"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-837H-J995-V8PG
Vulnerability from github – Published: 2022-05-24 19:02 – Updated: 2022-07-31 00:00A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected products utilize a weak encryption algorithm for storage of sensitive data, which may allow an attacker to more easily obtain credentials used for access.
{
"affected": [],
"aliases": [
"CVE-2021-27457"
],
"database_specific": {
"cwe_ids": [
"CWE-326",
"CWE-327"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2021-05-20T12:15:00Z",
"severity": "HIGH"
},
"details": "A vulnerability has been found in multiple revisions of Emerson Rosemount X-STREAM Gas Analyzer. The affected products utilize a weak encryption algorithm for storage of sensitive data, which may allow an attacker to more easily obtain credentials used for access.",
"id": "GHSA-837h-j995-v8pg",
"modified": "2022-07-31T00:00:58Z",
"published": "2022-05-24T19:02:54Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2021-27457"
},
{
"type": "WEB",
"url": "https://us-cert.cisa.gov/ics/advisories/icsa-21-138-01"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"type": "CVSS_V3"
}
]
}
GHSA-84GM-V5WH-659W
Vulnerability from github – Published: 2022-05-13 01:05 – Updated: 2025-04-12 12:34OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the "CCS Injection" vulnerability.
{
"affected": [],
"aliases": [
"CVE-2014-0224"
],
"database_specific": {
"cwe_ids": [
"CWE-326"
],
"github_reviewed": false,
"github_reviewed_at": null,
"nvd_published_at": "2014-06-05T21:55:00Z",
"severity": "HIGH"
},
"details": "OpenSSL before 0.9.8za, 1.0.0 before 1.0.0m, and 1.0.1 before 1.0.1h does not properly restrict processing of ChangeCipherSpec messages, which allows man-in-the-middle attackers to trigger use of a zero-length master key in certain OpenSSL-to-OpenSSL communications, and consequently hijack sessions or obtain sensitive information, via a crafted TLS handshake, aka the \"CCS Injection\" vulnerability.",
"id": "GHSA-84gm-v5wh-659w",
"modified": "2025-04-12T12:34:39Z",
"published": "2022-05-13T01:05:13Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2014-0224"
},
{
"type": "WEB",
"url": "https://www.novell.com/support/kb/doc.php?id=7015271"
},
{
"type": "WEB",
"url": "https://www.intersectalliance.com/wp-content/uploads/release_notes/ReleaseNotes_for_Snare_for_Windows.pdf"
},
{
"type": "WEB",
"url": "https://www.intersectalliance.com/wp-content/uploads/release_notes/ReleaseNotes_for_SNARE_for_MSSQL.pdf"
},
{
"type": "WEB",
"url": "https://www.imperialviolet.org/2014/06/05/earlyccs.html"
},
{
"type": "WEB",
"url": "https://www.ibm.com/support/docview.wss?uid=ssg1S1004671"
},
{
"type": "WEB",
"url": "https://www.ibm.com/support/docview.wss?uid=ssg1S1004670"
},
{
"type": "WEB",
"url": "https://www.arista.com/en/support/advisories-notices/security-advisories/941-security-advisory-0005"
},
{
"type": "WEB",
"url": "https://kc.mcafee.com/corporate/index?page=content\u0026id=SB10075"
},
{
"type": "WEB",
"url": "https://kb.bluecoat.com/index?page=content\u0026id=SA80"
},
{
"type": "WEB",
"url": "https://h20566.www2.hpe.com/portal/site/hpsc/public/kb/docDisplay?docId=emr_na-c05301946"
},
{
"type": "WEB",
"url": "https://git.openssl.org/gitweb/?p=openssl.git;a=commit;h=bc8923b1ec9c467755cd86f7848c50ee8812e441"
},
{
"type": "WEB",
"url": "https://git.openssl.org/gitweb/?p=openssl.git%3Ba=commit%3Bh=bc8923b1ec9c467755cd86f7848c50ee8812e441"
},
{
"type": "WEB",
"url": "https://filezilla-project.org/versions.php?type=server"
},
{
"type": "WEB",
"url": "https://discussions.nessus.org/thread/7517"
},
{
"type": "WEB",
"url": "https://cert-portal.siemens.com/productcert/pdf/ssa-234763.pdf"
},
{
"type": "WEB",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1103586"
},
{
"type": "WEB",
"url": "https://blogs.oracle.com/sunsecurity/entry/cve_2014_0224_cryptographic_issues1"
},
{
"type": "WEB",
"url": "https://blogs.oracle.com/sunsecurity/entry/cve_2014_0224_cryptographic_issues"
},
{
"type": "WEB",
"url": "https://access.redhat.com/site/blogs/766093/posts/908133"
},
{
"type": "WEB",
"url": "http://aix.software.ibm.com/aix/efixes/security/openssl_advisory9.asc"
},
{
"type": "WEB",
"url": "http://ccsinjection.lepidum.co.jp"
},
{
"type": "WEB",
"url": "http://dev.mysql.com/doc/relnotes/workbench/en/wb-news-6-1-7.html"
},
{
"type": "WEB",
"url": "http://esupport.trendmicro.com/solution/en-US/1103813.aspx"
},
{
"type": "WEB",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=JSA10629"
},
{
"type": "WEB",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=KB29195"
},
{
"type": "WEB",
"url": "http://kb.juniper.net/InfoCenter/index?page=content\u0026id=KB29217"
},
{
"type": "WEB",
"url": "http://linux.oracle.com/errata/ELSA-2014-1053.html"
},
{
"type": "WEB",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136470.html"
},
{
"type": "WEB",
"url": "http://lists.fedoraproject.org/pipermail/package-announce/2014-August/136473.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2015-03/msg00027.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2015-04/msg00016.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-security-announce/2016-03/msg00011.html"
},
{
"type": "WEB",
"url": "http://lists.opensuse.org/opensuse-updates/2015-02/msg00030.html"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140266410314613\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140317760000786\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140369637402535\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140386311427810\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140389274407904\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140389355508263\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140431828824371\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140448122410568\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140482916501310\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140491231331543\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140499864129699\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140544599631400\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140604261522465\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140621259019789\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140672208601650\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140752315422991\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140784085708882\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140794476212181\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140852757108392\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140852826008699\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140870499402361\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140904544427729\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=140983229106599\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=141025641601169\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=141147110427269\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=141164638606214\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=141383410222440\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=141383465822787\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=141658880509699\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=142350350616251\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=142546741516006\u0026w=2"
},
{
"type": "WEB",
"url": "http://marc.info/?l=bugtraq\u0026m=142805027510172\u0026w=2"
},
{
"type": "WEB",
"url": "http://puppetlabs.com/security/cve/cve-2014-0224"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0624.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0626.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0627.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0630.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0631.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0632.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0633.html"
},
{
"type": "WEB",
"url": "http://rhn.redhat.com/errata/RHSA-2014-0680.html"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2014/Dec/23"
},
{
"type": "WEB",
"url": "http://seclists.org/fulldisclosure/2014/Jun/38"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58128"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58337"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58385"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58433"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58492"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58579"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58615"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58639"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58660"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58667"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58713"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58714"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58716"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58719"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58742"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58743"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58745"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58759"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58930"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58939"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58945"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/58977"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59004"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59012"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59040"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59043"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59055"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59063"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59093"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59101"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59120"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59126"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59132"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59135"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59142"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59162"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59163"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59167"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59175"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59186"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59188"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59189"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59190"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59191"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59192"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59202"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59211"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59214"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59215"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59223"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59231"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59264"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59282"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59284"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59287"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59300"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59301"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59305"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59306"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59310"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59325"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59338"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59342"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59347"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59354"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59362"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59364"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59365"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59368"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59370"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59374"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59375"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59380"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59383"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59389"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59413"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59429"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59435"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59437"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59438"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59440"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59441"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59442"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59444"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59445"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59446"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59447"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59448"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59449"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59450"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59451"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59454"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59459"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59460"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59483"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59490"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59491"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59495"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59502"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59506"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59514"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59518"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59525"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59528"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59529"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59530"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59589"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59602"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59655"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59659"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59661"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59666"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59669"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59677"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59721"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59784"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59824"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59827"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59878"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59885"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59894"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59916"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/59990"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60049"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60066"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60176"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60522"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60567"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60571"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60577"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/60819"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/61254"
},
{
"type": "WEB",
"url": "http://secunia.com/advisories/61815"
},
{
"type": "WEB",
"url": "http://security.gentoo.org/glsa/glsa-201407-05.xml"
},
{
"type": "WEB",
"url": "http://support.apple.com/kb/HT6443"
},
{
"type": "WEB",
"url": "http://support.citrix.com/article/CTX140876"
},
{
"type": "WEB",
"url": "http://support.f5.com/kb/en-us/solutions/public/15000/300/sol15325.html"
},
{
"type": "WEB",
"url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20140605-openssl"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001841"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=isg400001843"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020163"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=nas8N1020172"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=ssg1S1004690"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg1IV61506"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21673137"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21675626"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21675821"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676035"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676062"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676071"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676333"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676334"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676419"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676478"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676496"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676501"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676529"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676536"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676615"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676644"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676655"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676786"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676833"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676845"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676879"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21676889"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677080"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677131"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677390"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677527"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677567"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677695"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677828"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21677836"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21678167"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21678233"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21678289"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg21683332"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037727"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037729"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037730"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037731"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037732"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037761"
},
{
"type": "WEB",
"url": "http://www-01.ibm.com/support/docview.wss?uid=swg24037870"
},
{
"type": "WEB",
"url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095740"
},
{
"type": "WEB",
"url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095754"
},
{
"type": "WEB",
"url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095755"
},
{
"type": "WEB",
"url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095756"
},
{
"type": "WEB",
"url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=MIGR-5095757"
},
{
"type": "WEB",
"url": "http://www-947.ibm.com/support/entry/portal/docdisplay?lndocid=migr-5095737"
},
{
"type": "WEB",
"url": "http://www.blackberry.com/btsc/KB36051"
},
{
"type": "WEB",
"url": "http://www.f-secure.com/en/web/labs_global/fsc-2014-6"
},
{
"type": "WEB",
"url": "http://www.fortiguard.com/advisory/FG-IR-14-018"
},
{
"type": "WEB",
"url": "http://www.huawei.com/en/security/psirt/security-bulletins/security-advisories/hw-345106.htm"
},
{
"type": "WEB",
"url": "http://www.ibm.com/support/docview.wss?uid=isg3T1020948"
},
{
"type": "WEB",
"url": "http://www.ibm.com/support/docview.wss?uid=ssg1S1004678"
},
{
"type": "WEB",
"url": "http://www.ibm.com/support/docview.wss?uid=swg1IT02314"
},
{
"type": "WEB",
"url": "http://www.ibm.com/support/docview.wss?uid=swg21676356"
},
{
"type": "WEB",
"url": "http://www.ibm.com/support/docview.wss?uid=swg21676793"
},
{
"type": "WEB",
"url": "http://www.ibm.com/support/docview.wss?uid=swg21676877"
},
{
"type": "WEB",
"url": "http://www.ibm.com/support/docview.wss?uid=swg24037783"
},
{
"type": "WEB",
"url": "http://www.innominate.com/data/downloads/manuals/mdm_1.5.2.1_Release_Notes.pdf"
},
{
"type": "WEB",
"url": "http://www.kb.cert.org/vuls/id/978508"
},
{
"type": "WEB",
"url": "http://www.kerio.com/support/kerio-control/release-history"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:105"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2014:106"
},
{
"type": "WEB",
"url": "http://www.mandriva.com/security/advisories?name=MDVSA-2015:062"
},
{
"type": "WEB",
"url": "http://www.novell.com/support/kb/doc.php?id=7015264"
},
{
"type": "WEB",
"url": "http://www.novell.com/support/kb/doc.php?id=7015300"
},
{
"type": "WEB",
"url": "http://www.openssl.org/news/secadv_20140605.txt"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2016-2881720.html"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/security-advisory/cpujul2017-3236622.html"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2016-2881722.html"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/security-advisory/cpuoct2017-3236626.html"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/cpujan2015-1972971.html"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/cpujul2014-1972956.html"
},
{
"type": "WEB",
"url": "http://www.oracle.com/technetwork/topics/security/cpuoct2014-1972960.html"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/archive/1/534161/100/0/threaded"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1031032"
},
{
"type": "WEB",
"url": "http://www.securitytracker.com/id/1031594"
},
{
"type": "WEB",
"url": "http://www.splunk.com/view/SP-CAAAM2D"
},
{
"type": "WEB",
"url": "http://www.tenable.com/blog/nessus-527-and-pvs-403-are-available-for-download"
},
{
"type": "WEB",
"url": "http://www.vmware.com/security/advisories/VMSA-2014-0006.html"
},
{
"type": "WEB",
"url": "http://www.vmware.com/security/advisories/VMSA-2014-0012.html"
},
{
"type": "WEB",
"url": "http://www.websense.com/support/article/kbarticle/Vulnerabilities-resolved-in-TRITON-APX-Version-8-0"
},
{
"type": "WEB",
"url": "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18\u0026ID=6060\u0026myns=phmc\u0026mync=E"
},
{
"type": "WEB",
"url": "http://www14.software.ibm.com/webapp/set2/subscriptions/pqvcmjd?mode=18\u0026ID=6061\u0026myns=phmc\u0026mync=E"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:N",
"type": "CVSS_V3"
}
]
}
Mitigation
Use an encryption scheme that is currently considered to be strong by experts in the field.
CAPEC-112: Brute Force
In this attack, some asset (information, functionality, identity, etc.) is protected by a finite secret value. The attacker attempts to gain access to this asset by using trial-and-error to exhaustively explore all the possible secret values in the hope of finding the secret (or a value that is functionally equivalent) that will unlock the asset.
CAPEC-192: Protocol Analysis
An adversary engages in activities to decipher and/or decode protocol information for a network or application communication protocol used for transmitting information between interconnected nodes or systems on a packet-switched data network. While this type of analysis involves the analysis of a networking protocol inherently, it does not require the presence of an actual or physical network.
CAPEC-20: Encryption Brute Forcing
An attacker, armed with the cipher text and the encryption algorithm used, performs an exhaustive (brute force) search on the key space to determine the key that decrypts the cipher text to obtain the plaintext.