Lucene search
K

5 matches found

Circl
Circl
added 2024/06/27 4:28 a.m.3 views

CVE-2024-29868

creationtimestamp| type| source ---|---|--- 2024-06-27 04:28:10+00:00| published-proof-of-concept| https://t.me/HackingInsights/3715...

9.1CVSS4.8AI score0.05995EPSS
Exploits1References1
vulnersOsv
vulnersOsv
added 2024/06/24 12:30 p.m.5 views

org.apache.streampipes:streampipes-backend (>=0.69.0 <=0.90.0), org.apache.streampipes:streampipes-connect-container-master (>=0.69.0 <=0.90.0) +9 more potentially affected by CVE-2024-29868 via org.apache.streampipes:streampipes-resource-management (>=0.69.0 <=0.93.0)

org.apache.streampipes:streampipes-resource-management MAVEN version =0.69.0, =0.69.0, =0.69.0, =0.91.0, =0.70.0, =0.69.0, =0.69.0, =0.69.0, =0.69.0, =0.69.0, =0.91.0, =0.93.0 - org.apache.streampipes:streampipes-service-core-minimal =0.93.0 Source cves: CVE-2024-29868 Source advisory:...

9.1CVSS5.8AI score0.05995EPSS
Exploits1
NVD
NVD
added 2024/06/24 10:15 a.m.27 views

CVE-2024-29868

Use of Cryptographically Weak Pseudo-Random Number Generator PRNG vulnerability in Apache StreamPipes user self-registration and password recovery mechanism. This allows an attacker to guess the recovery token in a reasonable time and thereby to take over the attacked user's account. This issue...

9.1CVSS0.05995EPSS
Exploits1References2
OSV
OSV
added 2024/06/24 10:15 a.m.5 views

CVE-2024-29868

Use of Cryptographically Weak Pseudo-Random Number Generator PRNG vulnerability in Apache StreamPipes user self-registration and password recovery mechanism. This allows an attacker to guess the recovery token in a reasonable time and thereby to take over the attacked user's account. This issue...

9.1CVSS9.2AI score
Exploits0References2
Cvelist
Cvelist
added 2024/06/24 9:59 a.m.56 views

CVE-2024-29868 Apache StreamPipes, Apache StreamPipes: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in Recovery Token Generation

Use of Cryptographically Weak Pseudo-Random Number Generator PRNG vulnerability in Apache StreamPipes user self-registration and password recovery mechanism. This allows an attacker to guess the recovery token in a reasonable time and thereby to take over the attacked user's account. This issue...

0.05995EPSS
Exploits1References1
Rows per page
Query Builder