Lucene search
K

5 matches found

EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2024-0610

Malicious code in bioql PyPI...

9.8CVSS7.2AI score0.0068EPSS
Exploits0References7
Github Security Blog
Github Security Blog
added 2024/02/17 6:30 a.m.29 views

Use of Insufficiently Random Values in github.com/greenpau/caddy-security

Versions of the package github.com/greenpau/caddy-security before 1.0.42 are vulnerable to Insecure Randomness due to using an insecure random number generation library which could possibly be predicted via a brute-force search. Attackers could use the potentially predictable nonce value used for...

9.8CVSS7.1AI score0.0068EPSS
Exploits0References6Affected Software1
CVE
CVE
added 2024/02/17 5:0 a.m.102 views

CVE-2024-21495

The CVE-2024-21495 entry concerns the Go package github.com/greenpau/caddy-security (versions before 1.0.42). Root cause: insecure randomness used in multiple contexts (OAuth nonce, MFA secrets, API key generation) due to an insecure RNG library, enabling potential replay or predictability attack...

9.8CVSS6.5AI score0.0068EPSS
Exploits0References4Affected Software1
Vulnrichment
Vulnrichment
added 2024/02/17 5:0 a.m.14 views

CVE-2024-21495

Versions of the package github.com/greenpau/caddy-security before 1.0.42 are vulnerable to Insecure Randomness due to using an insecure random number generation library which could possibly be predicted via a brute-force search. Attackers could use the potentially predictable nonce value used for...

6.5CVSS7AI score0.0068EPSS
Exploits0References4
OSV
OSV
added 2024/02/17 5:0 a.m.29 views

CVE-2024-21495

Versions of the package github.com/greenpau/caddy-security before 1.0.42 are vulnerable to Insecure Randomness due to using an insecure random number generation library which could possibly be predicted via a brute-force search. Attackers could use the potentially predictable nonce value used for...

6.5CVSS7.1AI score0.0068EPSS
Exploits0References6
Rows per page
Query Builder