4 matches found
CVE-2023-4695 Use of Predictable Algorithm in Random Number Generator in pkp/pkp-lib
Use of Predictable Algorithm in Random Number Generator in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-4695 Use of Predictable Algorithm in Random Number Generator in pkp/pkp-lib
Use of Predictable Algorithm in Random Number Generator in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-4695 Use of Predictable Algorithm in Random Number Generator in pkp/pkp-lib
Use of Predictable Algorithm in Random Number Generator in GitHub repository pkp/pkp-lib prior to 3.3.0-16...
CVE-2023-4695
The CVE-2023-4695 vulnerability affects pkp-lib prior to 3.3.0-16. It stems from using a predictable RNG algorithm (mt_rand) for password generation and seeding with time, leading to predictable outcomes and potentially total compromise of generated values. Affected component is the random number...