Goal Reached Thanks to every supporter — we hit 100%!

Goal: 1000 CNY · Raised: 1000 CNY

100.0%
Buy Us a Coffee

CWE-327 (使用已被攻破或存在风险的密码学算法) — Vulnerability Class 254

254 vulnerabilities classified as CWE-327 (使用已被攻破或存在风险的密码学算法). AI Chinese analysis included.

CVE IDTitleCVSSSeverityPublished
CVE-2022-3365 Emote Interactive Remote Mouse Server command injection due to weak encoding — Remote Mouse Server 9.8 -2025-01-28
CVE-2024-27256 IBM MQ Operator information disclosure — MQ Operator 5.9 Medium2025-01-27
CVE-2024-38320 IBM Storage Protect for Virtual Environments: Data Protection for VMware information disclosure — Storage Protect for Virtual Environments: Data Protection for VMware 5.9 Medium2025-01-27
CVE-2024-22347 IBM UrbanCode Velocity information disclosure — UrbanCode Velocity 5.9 Medium2025-01-20
CVE-2024-8603 B&R Automation Runtime 加密问题漏洞 — Automation Runtime 7.5 High2025-01-15
CVE-2024-52366 IBM Concert Software information disclosure — Concert Software 5.9 Medium2025-01-07
CVE-2024-41763 IBM Engineering Lifecycle Optimization - Publishing information disclosure — Engineering Lifecycle Optimization Publishing 5.9 Medium2025-01-04
CVE-2024-47921 Smadar SPS – CWE-327: Use of a Broken or Risky Cryptographic Algorithm — SPS 8.4 High2024-12-30
CVE-2024-55539 Acronis Cyber Protect Cloud Agent 加密问题漏洞 — Acronis Cyber Protect Cloud Agent 9.8 -2024-12-23
CVE-2024-28980 Dell RecoverPoint for Virtual Machines 加密问题漏洞 — RecoverPoint for Virtual Machines 6.5 Medium2024-12-13
CVE-2024-53845 AES/CBC Constant IV Vulnerability in ESPTouch v2 — esp-idf 7.5 -2024-12-11
CVE-2023-37395 IBM Aspera Faspex information disclosure — Aspera Faspex 2.5 Low2024-12-11
CVE-2024-41775 IBM Cognos Controller information disclosure — Cognos Controller 5.9 Medium2024-12-03
CVE-2024-52801 Brute force takeover of OpenID Connect session cookies in sftpgo — sftpgo 6.5 -2024-11-29
CVE-2022-43934 Weak Key-exchange algorithms — SANnav 6.5 Medium2024-11-21
CVE-2024-43189 IBM Concert Software information disclosure — Concert Software 5.9 Medium2024-11-15
CVE-2024-51556 Sensitive Information Disclosure Vulnerability in Wave 2.0 — Wave 2.0 6.5AIMediumAI2024-11-04
CVE-2024-51478 Use of a Broken or Risky Cryptographic Algorithm in YesWiki — yeswiki 9.9 Critical2024-10-31
CVE-2024-10128 Topdata Inner Rep Plus WebServer td.js.gz risky encryption — Inner Rep Plus WebServer 2.7 Low2024-10-18
CVE-2024-48016 Dell Secure Connect Gateway 加密问题漏洞 — Secure Connect Gateway (SCG) 5.0 Appliance - SRS 4.6 Medium2024-10-18
CVE-2024-8452 PLANET Technology switch devices - Insecure hash functions used for SNMPv3 credentials — GS-4210-24PL4C hardware 2.0 7.5 High2024-09-30
CVE-2024-39583 Dell InsightIQ 加密问题漏洞 — PowerScale InsightIQ 8.1 High2024-09-10
CVE-2024-37068 IBM Maximo Application Suite information disclosure — Maximo Application Suite 5.9 Medium2024-09-07
CVE-2024-39745 IBM Sterling Connect:Direct Web Services information disclosure — Sterling Connect:Direct Web Services 5.9 Medium2024-08-22
CVE-2024-28972 Dell InsightIQ 加密问题漏洞 — InsightIQ 5.9 Medium2024-08-01
CVE-2024-39731 IBM Datacap Navigator information disclosure — Datacap Navigator 5.9 Medium2024-07-15
CVE-2024-30098 Windows Cryptographic Services Security Feature Bypass Vulnerability — Windows Server 2025 (Server Core installation) 7.5 High2024-07-09
CVE-2023-41928 Remote server offers deprecated TLS protocol in Kiloview P1/P2 devices — P1/P2 5.3 Medium2024-07-02
CVE-2023-41927 Weak TLS Cipher Suites Supported in Kiloview P1/P2 devices — P1/P2 5.3 Medium2024-07-02
CVE-2024-32852 Dell PowerScale OneFS 加密问题漏洞 — PowerScale OneFS 5.9 Medium2024-07-02

Vulnerabilities classified as CWE-327 (使用已被攻破或存在风险的密码学算法) represent 254 CVEs. The CWE taxonomy describes the weakness; review individual CVEs for product-specific impact.