CVE-2018-15795
The CVE-2018-15795 entry concerns Pivotal CredHub Service Broker, prior to version 1.1.0, which uses a guessable random-number generation method when creating the service broker’s UAA client. The underlying issue is a weak PRNG that enables a remote attacker to guess the client secret and obtain ...