Lucene search

K
cvelistRedhatCVELIST:CVE-2013-6386
HistoryDec 07, 2013 - 9:00 p.m.

CVE-2013-6386

2013-12-0721:00:00
redhat
www.cve.org

6.4 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.1%

Drupal 6.x before 6.29 and 7.x before 7.24 uses the PHP mt_rand function to generate random numbers, which uses predictable seeds and allows remote attackers to predict security strings and bypass intended restrictions via a brute force attack.

6.4 Medium

AI Score

Confidence

Low

0.004 Low

EPSS

Percentile

75.1%