Lucene search
K

85 matches found

OSV
OSV
added 2019/05/07 7:29 a.m.16 views

CVE-2019-11808

Ratpack versions before 1.6.1 generate a session ID using a cryptographically weak PRNG in the JDK's ThreadLocalRandom. This means that if an attacker can determine a small window for the server start time and obtain a session ID value, they can theoretically determine the sequence of session IDs...

3.7CVSS7.1AI score
Exploits0References3
NVD
NVD
added 2019/05/07 7:29 a.m.26 views

CVE-2019-11808

Ratpack versions before 1.6.1 generate a session ID using a cryptographically weak PRNG in the JDK's ThreadLocalRandom. This means that if an attacker can determine a small window for the server start time and obtain a session ID value, they can theoretically determine the sequence of session IDs...

4.3CVSS4.1AI score0.01315EPSS
Exploits0References3
Prion
Prion
added 2019/05/07 7:29 a.m.14 views

Design/Logic Flaw

Ratpack versions before 1.6.1 generate a session ID using a cryptographically weak PRNG in the JDK's ThreadLocalRandom. This means that if an attacker can determine a small window for the server start time and obtain a session ID value, they can theoretically determine the sequence of session IDs...

4.3CVSS4.2AI score0.01315EPSS
Exploits0References3Affected Software1
CVE
CVE
added 2019/05/07 6:53 a.m.75 views

CVE-2019-11808

CVE-2019-11808 affects Ratpack versions before 1.6.1, where session IDs are generated using a cryptographically weak PRNG in the JDK’s ThreadLocalRandom. The consequence is that if an attacker can narrow the server-start window and observe a session ID, they could theoretically determine the sequ...

4.3CVSS4.4AI score0.01315EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 2019/05/07 6:53 a.m.33 views

CVE-2019-11808

Ratpack versions before 1.6.1 generate a session ID using a cryptographically weak PRNG in the JDK's ThreadLocalRandom. This means that if an attacker can determine a small window for the server start time and obtain a session ID value, they can theoretically determine the sequence of session IDs...

4.1AI score0.01315EPSS
Exploits0References3
Rows per page
Query Builder