Enterprise Vulnerabilities
From DHS/US-CERT's National Vulnerability Database
CVE-2017-2597PUBLISHED: 2022-08-08** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2017. Notes: none.
CVE-2017-2631PUBLISHED: 2022-08-08** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2017. Notes: none.
CVE-2017-2657PUBLISHED: 2022-08-08** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2017. Notes: none.
CVE-2017-7527PUBLISHED: 2022-08-08** REJECT ** DO NOT USE THIS CANDIDATE NUMBER. ConsultIDs: none. Reason: This candidate was in a CNA pool that was not assigned to any issues during 2017. Notes: none.
CVE-2021-41615PUBLISHED: 2022-08-08
websda.c in GoAhead WebServer 2.1.8 has insufficient nonce entropy because the nonce calculation relies on the hardcoded onceuponatimeinparadise value, which does not follow the secret-data guideline for HTTP Digest Access Authentication in RFC 7616 section 3.3 (or RFC 2617 section 3.2.1). NOTE: 2.1...
User Rank: Apprentice
11/9/2015 | 10:15:57 AM
I want websites to allow me to do business withotu an account, I am willing enter my name, address and phonenumber each time in trade for the mercahnt not storing anything.
Finanlly as far a two factor authenification it may be technically secure but I do not need another device or application that I need to protect. If I lose my cell phone that I would have to spend days reconstructing accounts. That is too high a price. The cheaper price is not having accounts,