Search criteria
20 vulnerabilities found for Cryptocat by Cryptocat
CVE-2013-4106 (GCVE-0-2013-4106)
Vulnerability from cvelistv5 – Published: 2019-11-14 19:56 – Updated: 2024-08-06 16:30
VLAI?
Summary
A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22.
Severity ?
No CVSS data available.
CWE
- Overview Nickname XSS
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:30:49.966Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61099"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://vuldb.com/pl/?id.9433"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"datePublic": "2012-11-07T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Overview Nickname XSS",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-14T19:56:24",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61099"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://vuldb.com/pl/?id.9433"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4106",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Overview Nickname XSS"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://www.securityfocus.com/bid/61099",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61099"
},
{
"name": "https://vuldb.com/pl/?id.9433",
"refsource": "MISC",
"url": "https://vuldb.com/pl/?id.9433"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4106",
"datePublished": "2019-11-14T19:56:24",
"dateReserved": "2013-06-12T00:00:00",
"dateUpdated": "2024-08-06T16:30:49.966Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-4108 (GCVE-0-2013-4108)
Vulnerability from cvelistv5 – Published: 2019-11-14 19:14 – Updated: 2024-08-06 16:30
VLAI?
Summary
Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors.
Severity ?
No CVSS data available.
CWE
- Unspecified Minor Issues
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:30:50.043Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "2.0.18"
}
]
}
],
"datePublic": "2012-11-01T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Unspecified Minor Issues",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-14T19:14:44",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4108",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "2.0.18"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Unspecified Minor Issues"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4108",
"datePublished": "2019-11-14T19:14:44",
"dateReserved": "2013-06-12T00:00:00",
"dateUpdated": "2024-08-06T16:30:50.043Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-4110 (GCVE-0-2013-4110)
Vulnerability from cvelistv5 – Published: 2019-11-05 12:51 – Updated: 2024-08-06 16:30
VLAI?
Summary
Cryptocat has an Unspecified Chat Participant User List Disclosure
Severity ?
No CVSS data available.
CWE
- User List Disclosure
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:30:49.899Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61117"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://vuldb.com/?id.9446"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "Fixed in 2.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat has an Unspecified Chat Participant User List Disclosure"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "User List Disclosure",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-05T12:51:50",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61117"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://vuldb.com/?id.9446"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4110",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "Fixed in 2.0"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat has an Unspecified Chat Participant User List Disclosure"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "User List Disclosure"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://www.securityfocus.com/bid/61117",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61117"
},
{
"name": "https://vuldb.com/?id.9446",
"refsource": "MISC",
"url": "https://vuldb.com/?id.9446"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4110",
"datePublished": "2019-11-05T12:51:50",
"dateReserved": "2013-06-12T00:00:00",
"dateUpdated": "2024-08-06T16:30:49.899Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-4107 (GCVE-0-2013-4107)
Vulnerability from cvelistv5 – Published: 2019-11-05 12:47 – Updated: 2024-08-06 16:30
VLAI?
Summary
Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting
Severity ?
No CVSS data available.
CWE
- Nickname Change XSS
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:30:50.026Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://vuldb.com/?id.9442"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61096"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Nickname Change XSS",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-05T12:47:12",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://vuldb.com/?id.9442"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61096"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4107",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Nickname Change XSS"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://vuldb.com/?id.9442",
"refsource": "MISC",
"url": "https://vuldb.com/?id.9442"
},
{
"name": "https://www.securityfocus.com/bid/61096",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61096"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4107",
"datePublished": "2019-11-05T12:47:12",
"dateReserved": "2013-06-12T00:00:00",
"dateUpdated": "2024-08-06T16:30:50.026Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2257 (GCVE-0-2013-2257)
Vulnerability from cvelistv5 – Published: 2019-11-04 16:41 – Updated: 2024-08-06 15:27
VLAI?
Summary
Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness
Severity ?
No CVSS data available.
CWE
- Brute Force Weakness
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:27:41.138Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61087"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.42"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Brute Force Weakness",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-04T16:41:52",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61087"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-2257",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.42"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Brute Force Weakness"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://www.securityfocus.com/bid/61087",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61087"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-2257",
"datePublished": "2019-11-04T16:41:52",
"dateReserved": "2013-02-19T00:00:00",
"dateUpdated": "2024-08-06T15:27:41.138Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2258 (GCVE-0-2013-2258)
Vulnerability from cvelistv5 – Published: 2019-11-04 16:35 – Updated: 2024-08-06 15:27
VLAI?
Summary
Cryptocat before 2.0.22 has Nickname User Impersonation
Severity ?
No CVSS data available.
CWE
- User Impersonation Spoofing
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:27:41.080Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61088"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat before 2.0.22 has Nickname User Impersonation"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "User Impersonation Spoofing",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-04T16:35:11",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61088"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-2258",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.0.22 has Nickname User Impersonation"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "User Impersonation Spoofing"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://www.securityfocus.com/bid/61088",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61088"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-2258",
"datePublished": "2019-11-04T16:35:11",
"dateReserved": "2013-02-19T00:00:00",
"dateUpdated": "2024-08-06T15:27:41.080Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2259 (GCVE-0-2013-2259)
Vulnerability from cvelistv5 – Published: 2019-11-04 16:32 – Updated: 2024-08-06 15:27
VLAI?
Summary
Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview
Severity ?
No CVSS data available.
CWE
- Arbitrary Code Execution
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:27:41.094Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61089"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Arbitrary Code Execution",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-04T16:32:03",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61089"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-2259",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Arbitrary Code Execution"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://www.securityfocus.com/bid/61089",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61089"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-2259",
"datePublished": "2019-11-04T16:32:03",
"dateReserved": "2013-02-19T00:00:00",
"dateUpdated": "2024-08-06T15:27:41.094Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-4105 (GCVE-0-2013-4105)
Vulnerability from cvelistv5 – Published: 2019-11-04 16:27 – Updated: 2024-08-06 16:30
VLAI?
Summary
Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure
Severity ?
No CVSS data available.
CWE
- Plaintext Traffic Disclosure
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:30:50.087Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61110"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Plaintext Traffic Disclosure",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-04T16:27:30",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61110"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4105",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Plaintext Traffic Disclosure"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://www.securityfocus.com/bid/61110",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61110"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4105",
"datePublished": "2019-11-04T16:27:30",
"dateReserved": "2013-06-12T00:00:00",
"dateUpdated": "2024-08-06T16:30:50.087Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2260 (GCVE-0-2013-2260)
Vulnerability from cvelistv5 – Published: 2019-11-04 16:15 – Updated: 2024-08-06 15:27
VLAI?
Summary
Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness
Severity ?
No CVSS data available.
CWE
- Key Entropy Weakness
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:27:41.091Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://vuldb.com/?id.9435"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61091/info"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Key Entropy Weakness",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-04T16:15:31",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://vuldb.com/?id.9435"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61091/info"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-2260",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Key Entropy Weakness"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://vuldb.com/?id.9435",
"refsource": "MISC",
"url": "https://vuldb.com/?id.9435"
},
{
"name": "https://www.securityfocus.com/bid/61091/info",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61091/info"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-2260",
"datePublished": "2019-11-04T16:15:31",
"dateReserved": "2013-02-19T00:00:00",
"dateUpdated": "2024-08-06T15:27:41.091Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2262 (GCVE-0-2013-2262)
Vulnerability from cvelistv5 – Published: 2019-11-04 15:50 – Updated: 2024-08-06 15:27
VLAI?
Summary
Cryptocat strophe.js before 2.0.22 has information disclosure
Severity ?
No CVSS data available.
CWE
- Activity Remote Disclosure
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:27:41.129Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://vuldb.com/?id.9438"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61092"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat strophe.js before 2.0.22 has information disclosure"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Activity Remote Disclosure",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-04T15:50:02",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://vuldb.com/?id.9438"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61092"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-2262",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat strophe.js before 2.0.22 has information disclosure"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Activity Remote Disclosure"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://vuldb.com/?id.9438",
"refsource": "MISC",
"url": "https://vuldb.com/?id.9438"
},
{
"name": "https://www.securityfocus.com/bid/61092",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61092"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-2262",
"datePublished": "2019-11-04T15:50:02",
"dateReserved": "2013-02-19T00:00:00",
"dateUpdated": "2024-08-06T15:27:41.129Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-4106 (GCVE-0-2013-4106)
Vulnerability from nvd – Published: 2019-11-14 19:56 – Updated: 2024-08-06 16:30
VLAI?
Summary
A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22.
Severity ?
No CVSS data available.
CWE
- Overview Nickname XSS
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:30:49.966Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61099"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://vuldb.com/pl/?id.9433"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"datePublic": "2012-11-07T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Overview Nickname XSS",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-14T19:56:24",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61099"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://vuldb.com/pl/?id.9433"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4106",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "A Cross-site scripting (XSS) vulnerability exists in Conversation Overview Nickname in Cryptocat before 2.0.22."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Overview Nickname XSS"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://www.securityfocus.com/bid/61099",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61099"
},
{
"name": "https://vuldb.com/pl/?id.9433",
"refsource": "MISC",
"url": "https://vuldb.com/pl/?id.9433"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4106",
"datePublished": "2019-11-14T19:56:24",
"dateReserved": "2013-06-12T00:00:00",
"dateUpdated": "2024-08-06T16:30:49.966Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-4108 (GCVE-0-2013-4108)
Vulnerability from nvd – Published: 2019-11-14 19:14 – Updated: 2024-08-06 16:30
VLAI?
Summary
Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors.
Severity ?
No CVSS data available.
CWE
- Unspecified Minor Issues
Assigner
References
| URL | Tags | |||||||
|---|---|---|---|---|---|---|---|---|
|
||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:30:50.043Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "2.0.18"
}
]
}
],
"datePublic": "2012-11-01T00:00:00",
"descriptions": [
{
"lang": "en",
"value": "Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Unspecified Minor Issues",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-14T19:14:44",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4108",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "2.0.18"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Multiple unspecified vulnerabilities in Cryptocat Project Cryptocat 2.0.18 have unknown impact and attack vectors."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Unspecified Minor Issues"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4108",
"datePublished": "2019-11-14T19:14:44",
"dateReserved": "2013-06-12T00:00:00",
"dateUpdated": "2024-08-06T16:30:50.043Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-4110 (GCVE-0-2013-4110)
Vulnerability from nvd – Published: 2019-11-05 12:51 – Updated: 2024-08-06 16:30
VLAI?
Summary
Cryptocat has an Unspecified Chat Participant User List Disclosure
Severity ?
No CVSS data available.
CWE
- User List Disclosure
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:30:49.899Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61117"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://vuldb.com/?id.9446"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "Fixed in 2.0"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat has an Unspecified Chat Participant User List Disclosure"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "User List Disclosure",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-05T12:51:50",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61117"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://vuldb.com/?id.9446"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4110",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "Fixed in 2.0"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat has an Unspecified Chat Participant User List Disclosure"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "User List Disclosure"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://www.securityfocus.com/bid/61117",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61117"
},
{
"name": "https://vuldb.com/?id.9446",
"refsource": "MISC",
"url": "https://vuldb.com/?id.9446"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4110",
"datePublished": "2019-11-05T12:51:50",
"dateReserved": "2013-06-12T00:00:00",
"dateUpdated": "2024-08-06T16:30:49.899Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-4107 (GCVE-0-2013-4107)
Vulnerability from nvd – Published: 2019-11-05 12:47 – Updated: 2024-08-06 16:30
VLAI?
Summary
Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting
Severity ?
No CVSS data available.
CWE
- Nickname Change XSS
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:30:50.026Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://vuldb.com/?id.9442"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61096"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Nickname Change XSS",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-05T12:47:12",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://vuldb.com/?id.9442"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61096"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4107",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.0.22: cryptocat.js handlePresence() has cross site scripting"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Nickname Change XSS"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://vuldb.com/?id.9442",
"refsource": "MISC",
"url": "https://vuldb.com/?id.9442"
},
{
"name": "https://www.securityfocus.com/bid/61096",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61096"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4107",
"datePublished": "2019-11-05T12:47:12",
"dateReserved": "2013-06-12T00:00:00",
"dateUpdated": "2024-08-06T16:30:50.026Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2257 (GCVE-0-2013-2257)
Vulnerability from nvd – Published: 2019-11-04 16:41 – Updated: 2024-08-06 15:27
VLAI?
Summary
Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness
Severity ?
No CVSS data available.
CWE
- Brute Force Weakness
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:27:41.138Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61087"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.42"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Brute Force Weakness",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-04T16:41:52",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61087"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-2257",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.42"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.0.42 has Group Chat ECC Private Key Generation Brute Force Weakness"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Brute Force Weakness"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://www.securityfocus.com/bid/61087",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61087"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-2257",
"datePublished": "2019-11-04T16:41:52",
"dateReserved": "2013-02-19T00:00:00",
"dateUpdated": "2024-08-06T15:27:41.138Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2258 (GCVE-0-2013-2258)
Vulnerability from nvd – Published: 2019-11-04 16:35 – Updated: 2024-08-06 15:27
VLAI?
Summary
Cryptocat before 2.0.22 has Nickname User Impersonation
Severity ?
No CVSS data available.
CWE
- User Impersonation Spoofing
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:27:41.080Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61088"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat before 2.0.22 has Nickname User Impersonation"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "User Impersonation Spoofing",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-04T16:35:11",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61088"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-2258",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.0.22 has Nickname User Impersonation"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "User Impersonation Spoofing"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://www.securityfocus.com/bid/61088",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61088"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-2258",
"datePublished": "2019-11-04T16:35:11",
"dateReserved": "2013-02-19T00:00:00",
"dateUpdated": "2024-08-06T15:27:41.080Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2259 (GCVE-0-2013-2259)
Vulnerability from nvd – Published: 2019-11-04 16:32 – Updated: 2024-08-06 15:27
VLAI?
Summary
Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview
Severity ?
No CVSS data available.
CWE
- Arbitrary Code Execution
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:27:41.094Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61089"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Arbitrary Code Execution",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-04T16:32:03",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61089"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-2259",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.0.22 has Arbitrary Code Execution on Firefox Conversation Overview"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Arbitrary Code Execution"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://www.securityfocus.com/bid/61089",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61089"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-2259",
"datePublished": "2019-11-04T16:32:03",
"dateReserved": "2013-02-19T00:00:00",
"dateUpdated": "2024-08-06T15:27:41.094Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-4105 (GCVE-0-2013-4105)
Vulnerability from nvd – Published: 2019-11-04 16:27 – Updated: 2024-08-06 16:30
VLAI?
Summary
Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure
Severity ?
No CVSS data available.
CWE
- Plaintext Traffic Disclosure
Assigner
References
| URL | Tags | ||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|
|
|||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T16:30:50.087Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61110"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Plaintext Traffic Disclosure",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-04T16:27:30",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61110"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-4105",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.0.22 has Multiparty Encryption Scheme Information Disclosure"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Plaintext Traffic Disclosure"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://www.securityfocus.com/bid/61110",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61110"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-4105",
"datePublished": "2019-11-04T16:27:30",
"dateReserved": "2013-06-12T00:00:00",
"dateUpdated": "2024-08-06T16:30:50.087Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2260 (GCVE-0-2013-2260)
Vulnerability from nvd – Published: 2019-11-04 16:15 – Updated: 2024-08-06 15:27
VLAI?
Summary
Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness
Severity ?
No CVSS data available.
CWE
- Key Entropy Weakness
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:27:41.091Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://vuldb.com/?id.9435"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61091/info"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Key Entropy Weakness",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-04T16:15:31",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://vuldb.com/?id.9435"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61091/info"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-2260",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat before 2.0.22: Cryptocat.random() Function Array Key has Entropy Weakness"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Key Entropy Weakness"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://vuldb.com/?id.9435",
"refsource": "MISC",
"url": "https://vuldb.com/?id.9435"
},
{
"name": "https://www.securityfocus.com/bid/61091/info",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61091/info"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-2260",
"datePublished": "2019-11-04T16:15:31",
"dateReserved": "2013-02-19T00:00:00",
"dateUpdated": "2024-08-06T15:27:41.091Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}
CVE-2013-2262 (GCVE-0-2013-2262)
Vulnerability from nvd – Published: 2019-11-04 15:50 – Updated: 2024-08-06 15:27
VLAI?
Summary
Cryptocat strophe.js before 2.0.22 has information disclosure
Severity ?
No CVSS data available.
CWE
- Activity Remote Disclosure
Assigner
References
| URL | Tags | |||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
|
||||||||||||||
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-06T15:27:41.129Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://vuldb.com/?id.9438"
},
{
"tags": [
"x_refsource_MISC",
"x_transferred"
],
"url": "https://www.securityfocus.com/bid/61092"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "Cryptocat",
"vendor": "Cryptocat",
"versions": [
{
"status": "affected",
"version": "before 2.0.22"
}
]
}
],
"descriptions": [
{
"lang": "en",
"value": "Cryptocat strophe.js before 2.0.22 has information disclosure"
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "Activity Remote Disclosure",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2019-11-04T15:50:02",
"orgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"shortName": "redhat"
},
"references": [
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://tobtu.com/decryptocat.php"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://vuldb.com/?id.9438"
},
{
"tags": [
"x_refsource_MISC"
],
"url": "https://www.securityfocus.com/bid/61092"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "secalert@redhat.com",
"ID": "CVE-2013-2262",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "Cryptocat",
"version": {
"version_data": [
{
"version_value": "before 2.0.22"
}
]
}
}
]
},
"vendor_name": "Cryptocat"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "Cryptocat strophe.js before 2.0.22 has information disclosure"
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "Activity Remote Disclosure"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://www.openwall.com/lists/oss-security/2013/07/10/15",
"refsource": "MISC",
"url": "https://www.openwall.com/lists/oss-security/2013/07/10/15"
},
{
"name": "https://tobtu.com/decryptocat.php",
"refsource": "MISC",
"url": "https://tobtu.com/decryptocat.php"
},
{
"name": "https://vuldb.com/?id.9438",
"refsource": "MISC",
"url": "https://vuldb.com/?id.9438"
},
{
"name": "https://www.securityfocus.com/bid/61092",
"refsource": "MISC",
"url": "https://www.securityfocus.com/bid/61092"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "53f830b8-0a3f-465b-8143-3b8a9948e749",
"assignerShortName": "redhat",
"cveId": "CVE-2013-2262",
"datePublished": "2019-11-04T15:50:02",
"dateReserved": "2013-02-19T00:00:00",
"dateUpdated": "2024-08-06T15:27:41.129Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1"
}