Lucene search
HistorySep 28, 2012 - 5:55 p.m.
CVE-2012-2681
cve-2012-2681
cumin
red hat enterprise messaging
realtime
grid
mrg
session key
predictable random numbers
remote attackers
6.7 Medium
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.01 Low
EPSS
Percentile
83.2%
Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, uses predictable random numbers to generate session keys, which makes it easier for remote attackers to guess the session key.
Related
cvelist
cvelist
CVE-2012-2681
2012-09-28 17:00:00
prion
prion
Design/Logic Flaw
2012-09-28 17:55:00
redhat
redhat
(RHSA-2012:1278) Moderate: Red Hat Enterprise MRG Grid 2.2 security update
2012-09-19 00:00:00
(RHSA-2012:1281) Moderate: Red Hat Enterprise MRG Grid 2.2 security update
2012-09-19 00:00:00
veracode
veracode
Cross-site Scripting (XSS)
2019-05-02 04:43:17
Unauthorised Removal Of Idle Jobs
2019-05-02 04:43:19
nessus
nessus
RHEL 6 : Red Hat Enterprise MRG Grid 2.2 (RHSA-2012:1281)
2014-07-22 00:00:00
RHEL 5 : MRG (RHSA-2012:1278)
2014-07-22 00:00:00
6.7 Medium
AI Score
Confidence
Low
5.8 Medium
CVSS2
Access Vector
NETWORK
Access Complexity
MEDIUM
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
NONE
AV:N/AC:M/Au:N/C:P/I:P/A:N
0.01 Low
EPSS
Percentile
83.2%
Related for CVE-2012-2681