CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

68 matches found

RedhatCVE•added 2025/05/23 12:3 a.m.•5 views

CVE-2022-25047

The password reset token in CWP v0.9.8.1126 is generated using known or predictable values...

5.9CVSS7.2AI score0.00346EPSS

Exploits1References1

RedhatCVE•added 2025/05/22 10:41 p.m.•4 views

CVE-2022-28355

randomUUID in Scala.js before 1.10.0 generates predictable values...

7.5CVSS6.9AI score0.00357EPSS

Exploits0References1

RedhatCVE•added 2025/02/05 7:38 p.m.•9 views

CVE-2022-39218

The JS Compute Runtime for Fastly's Compute@Edge platform provides the environment JavaScript is executed in when using the Compute@Edge JavaScript SDK. In versions prior to 0.5.3, the Math.random and crypto.getRandomValues methods fail to use sufficiently random values. The initial value to seed...

7.5CVSS6.5AI score0.00097EPSS

Exploits0References1

CNVD•added 2024/05/15 12:0 a.m.•5 views

Unspecified Vulnerability in Mozilla Firefox (CNVD-2024-23333)

Mozilla Firefox is an open source web browser from the Mozilla Foundation in the United States. Mozilla Firefox has a security vulnerability that can be exploited by attackers to obtain predictable values...

5.9CVSS6.4AI score0.00058EPSS

Exploits1References1

NVD•added 2024/05/14 6:15 p.m.•16 views

CVE-2024-4772

An HTTP digest authentication nonce value was generated using rand which could lead to predictable values. This vulnerability affects Firefox 126...

5.9CVSS5.8AI score0.00058EPSS

Exploits1References2

UbuntuCve•added 2024/05/14 6:15 p.m.•21 views

CVE-2024-4772

An HTTP digest authentication nonce value was generated using rand which could lead to predictable values. This vulnerability affects Firefox 126...

5.9CVSS6.9AI score0.00058EPSS

Exploits1References5

Debian CVE•added 2024/05/14 5:21 p.m.•23 views

CVE-2024-4772

An HTTP digest authentication nonce value was generated using rand which could lead to predictable values. This vulnerability affects Firefox 126...

5.9CVSS8AI score0.00058EPSS

Exploits1

CNNVD•added 2024/05/14 12:0 a.m.•3 views

Mozilla Firefox 安全漏洞

5.9CVSS8.7AI score0.00058EPSS

Exploits1References4

NVD•added 2023/07/03 9:15 p.m.•12 views

CVE-2023-36610

The affected TBox RTUs generate software security tokens using insufficient entropy. The random seed used to generate the software tokens is not initialized correctly, and other parts of the token are generated using predictable time-based values. An attacker with this knowledge could successful...

5.9CVSS6AI score0.00143EPSS

Exploits0References1

Prion•added 2023/07/03 9:15 p.m.•11 views

Code injection

?The affected TBox RTUs generate software security tokens using insufficient entropy. The random seed used to generate the software tokens is not initialized correctly, and other parts of the token are generated using predictable time-based values. An attacker with this knowledge could successful...

2.6CVSS6.2AI score0.00143EPSS

Exploits0References1Affected Software5

Tenable Nessus•added 2023/03/21 12:0 a.m.•33 views

Tridium Niagara AX Improper Authentication (CVE-2012-3024)

Tridium Niagara AX Framework through 3.6 uses predictable values for 1 session IDs and 2 keys, which might allow remote attackers to bypass authentication via a brute-force attack. This plugin only works with Tenable.ot. Please visit https://www.tenable.com/products/tenable-ot for more informatio...

5CVSS5.4AI score0.00489EPSS

Exploits0References3

SUSE CVE•added 2023/02/15 6:2 a.m.•2 views

SUSE CVE-2009-3238

The getrandomint function in drivers/char/random.c in the Linux kernel before 2.6.30 produces insufficiently random numbers, which allows attackers to predict the return value, and possibly defeat protection mechanisms based on randomization, via vectors that leverage the function's tendency to...

7.8CVSS6.7AI score0.00241EPSS

Exploits2References6

NVD•added 2022/09/01 9:15 p.m.•10 views

CVE-2022-1615

In Samba, GnuTLS gnutlsrnd can fail and give predictable random values...

5.5CVSS0.00259EPSS

Exploits1References4

OSV•added 2022/09/01 9:15 p.m.•24 views

CVE-2022-1615

In Samba, GnuTLS gnutlsrnd can fail and give predictable random values...

5.5CVSS6.9AI score

Exploits0References4

RedhatCVE•added 2022/08/30 2:41 p.m.•34 views

CVE-2022-1615

A flaw was found in Samba. When the gnutlsrnd function is called, its return value is not verified, allowing it to give predictable random values when the call to the gnutlsrnd function fails...

5.1CVSS5.8AI score0.00259EPSS

Exploits1References3

OSV•added 2022/07/15 8:55 p.m.•11 views

GHSA-768M-5W34-2XF5 LTI 1.3 Tool Library's function used to generate random nonces not sufficiently cryptographically complex before v5.0

Impact The function used to generate random nonces was not sufficiently cryptographically complex. As a result values may be predictable and tokens may be forgable. Patches Users should upgrade to version 5.0 immediately Workarounds None...

7.5CVSS7.4AI score0.00175EPSS

Exploits0References5

ATTACKERKB•added 2022/07/07 12:15 p.m.•4 views

CVE-2022-25047

The password reset token in CWP v0.9.8.1126 is generated using known or predictable values...

5.9CVSS5.8AI score0.00346EPSS

Exploits1References2

NVD•added 2022/07/07 12:15 p.m.•9 views

CVE-2022-25047

The password reset token in CWP v0.9.8.1126 is generated using known or predictable values...

5.9CVSS0.00346EPSS

Exploits1References1

OSV•added 2022/07/07 12:15 p.m.•4 views

CVE-2022-25047

The password reset token in CWP v0.9.8.1126 is generated using known or predictable values...

5.9CVSS5.8AI score0.00346EPSS

Exploits1References1

CNNVD•added 2022/07/07 12:0 a.m.•2 views

CWP Panel 安全特征问题漏洞

CWP Panel is a modern and advanced Linux control panel from CWP Inc. for web hosting service providers and system administrators. A security vulnerability exists in CWP Panel version v0.9.8.1126, which stems from a password reset token being generated using known or predictable values...

5.9CVSS6AI score0.00346EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by