GCVE - cpe:2.3:a:ncipher:mscapi_csp:5.54:*:*:*:*:*:*:*

Approved changes feed: RSS · Atom

cpe:2.3:a:ncipher:mscapi_csp:5.54:*:*:*:*:*:*:*

part: a version: 5.54 update: *

Vendor	Ncipher (`d960e601-258f-5d85-8f78-ff5a0013c2c3`)
Product	Mscapi Csp (`1d0ea52e-b92e-57a4-8a46-87106cfc181a`)
Edition	*
Language	*
Software edition	*
Target software	*
Target hardware	*
Other	*
Notes	Imported from gcve-enriched-dumps CVE data

PURL mappings

PURL	Source	Last updated
No PURL mappings for this CPE yet.

Vulnerability references

Identifier	cpeApplicability	Submitted	db.gcve.eu details	Rationale
`CVE:CVE-2006-1115`	vulnerable	2026-06-03 14:27:23.397331	Details available nCipher HSM before 2.22.6, when generating a Diffie-Hellman public/private key pair without any specified DiscreteLogGroup parameters, chooses random parameters that could allow an attacker to crack the private key in significantly less time than a brute force attack. Published: 2006-03-09T11:00:00.000Z Updated: 2024-08-07T16:56:15.715Z Open on db.gcve.eu Reference links http://www.vupen.com/english/advisories/2006/0862 http://securitytracker.com/id?1015719 http://www.securityfocus.com/archive/1/427146/100/0/threaded http://www.ncipher.com/resources/95/sa12_insecure_generation_of_diffiehellman_keys http://www.securityfocus.com/bid/17006	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2002-0940`	vulnerable	2026-06-03 14:26:15.423780	Details available domesticinstall.exe for nCipher MSCAPI CSP 5.50 and 5.54 does not use Operator Card Set protected keys when the user requests them but does not generate the Operator Card Set, which results in a lower protection level than specified by the user (module protection only). Published: 2002-08-31T04:00:00.000Z Updated: 2024-08-08T03:03:49.374Z Open on db.gcve.eu Reference links http://online.securityfocus.com/archive/1/277241 http://www.securityfocus.com/bid/4729 http://archives.neohapsis.com/archives/bugtraq/2002-05/0103.html	Imported from gcve-enriched-dumps CVE data
`CVE:CVE-2002-0939`	vulnerable	2026-06-03 14:26:15.423399	Details available The Install Wizard for nCipher MSCAPI CSP 5.50 does not use Operator Card Set protected keys when the user requests them but does not generate the Operator Card Set, which results in a lower protection level than specified by the user (module protection only). Published: 2002-08-31T04:00:00.000Z Updated: 2024-08-08T03:03:49.306Z Open on db.gcve.eu Reference links http://www.iss.net/security_center/static/9076.php http://www.securityfocus.com/bid/4729 http://archives.neohapsis.com/archives/bugtraq/2002-05/0103.html	Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.