本ページは research_triangle_software cryptobuddy に影響する公開済み CVE(NVD の CPE 経由で関連付け)を列挙します。各行に深刻度指標・概要・公開日が含まれます。
| CVE | 概要 | ソース | CVSS 最大値 | EPSS(%) | 公開 | 更新 |
|---|---|---|---|---|---|---|
| CVE-2003-1392 | CryptoBuddy 1.0 and 1.2 does not use the user-supplied passphrase to encrypt data, which could allow local users to use their own passphrase to decrypt the data. | [email protected] | 6.6 | 1.50% | 2003-12-31 | 2026-04-16 |
| CVE-2003-1391 | RTS CryptoBuddy 1.0 and 1.2 uses a weak encryption algorithm for the passphrase and generates predictable keys, which makes it easier for attackers to guess the passphrase. | [email protected] | 7.5 | 0.70% | 2003-12-31 | 2026-04-16 |
| CVE-2003-1390 | RTS CryptoBuddy 1.2 and earlier stores bytes 53 through 55 of a 55-byte passphrase in plaintext, which makes it easier for local users to guess the passphrase. | [email protected] | 7.5 | 0.95% | 2003-12-31 | 2026-04-16 |
| CVE-2003-1389 | RTS CryptoBuddy 1.2 and earlier truncates long passphrases without warning the user, which may make it easier to conduct certain brute force guessing attacks. | [email protected] | 7.5 | 1.13% | 2003-12-31 | 2026-04-16 |