CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Cvelist•added 2022/11/15 12:0 a.m.•40 views

CVE-2021-4240 phpservermon User.php generatePasswordResetToken predictable algorithm in random number generator

2.6CVSS5.6AI score0.00803EPSS

Cvelist•added 2022/11/15 12:0 a.m.•30 views

CVE-2021-4241 phpservermon User.php setUserLoggedIn predictable algorithm in random number generator

A vulnerability, which was classified as problematic, was found in phpservermon. Affected is the function setUserLoggedIn of the file src/psm/Service/User.php. The manipulation leads to use of predictable algorithm in random number generator. The exploit has been disclosed to the public and may b...

2.6CVSS5.6AI score0.00769EPSS

Vulnrichment•added 2022/11/15 12:0 a.m.•5 views

CVE-2021-4241 phpservermon User.php setUserLoggedIn predictable algorithm in random number generator

2.6CVSS5.7AI score0.00769EPSS

OSV•added 2021/09/01 6:35 p.m.•10 views

GHSA-HQ3V-RG6F-6HX4 Use of Insufficiently Random Values in yiisoft/yii2-dev

yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator...

7.5CVSS7.4AI score0.01902EPSS

Exploits1References4

Github Security Blog•added 2021/09/01 6:35 p.m.•33 views

Use of Insufficiently Random Values in yiisoft/yii2-dev

yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator...

8.1CVSS7.3AI score0.01902EPSS

Exploits1References4Affected Software1

NVD•added 2021/08/10 5:15 p.m.•17 views

CVE-2021-3692

yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator...

8.1CVSS0.017EPSS

OSV•added 2021/08/10 5:15 p.m.•16 views

CVE-2021-3692

yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator...

5.3CVSS6.8AI score

Exploits0References2

Prion•added 2021/08/10 5:15 p.m.•16 views

Code injection

yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator...

5CVSS5.2AI score0.017EPSS

Cvelist•added 2021/08/10 3:36 p.m.•28 views

CVE-2021-3692 Use of Predictable Algorithm in Random Number Generator in yiisoft/yii2

yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator...

8.1CVSS5.6AI score0.017EPSS

CVE•added 2021/08/10 3:36 p.m.•76 views

CVE-2021-3692

CVE-2021-3692 affects yiisoft/yii2 (and related versions) with a vulnerability described as Use of Predictable Algorithm in Random Number Generator. Public sources consistently point to insecure RNG usage, notably the use of mt_rand() in code paths such as CaptchaAction.php, leading to predictabl...

8.1CVSS5.6AI score0.017EPSS

NVD•added 2021/08/10 11:15 a.m.•16 views

CVE-2021-3689

yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator...

8.1CVSS0.01902EPSS

Prion•added 2021/08/10 11:15 a.m.•13 views

Code injection

yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator...

5CVSS7.5AI score0.01902EPSS

Cvelist•added 2021/08/10 10:21 a.m.•22 views

CVE-2021-3689 Use of Predictable Algorithm in Random Number Generator in yiisoft/yii2

yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator...

8.1CVSS7.7AI score0.01902EPSS

CVE•added 2021/08/10 10:21 a.m.•75 views

CVE-2021-3689

CVE-2021-3689 affects yiisoft/yii2 and is caused by use of a Predictable Algorithm in the Random Number Generator (RNG). The entry consolidates multiple sources indicating insecure RNG usage (notably mt_rand-based implementation in Yii2 components such as BaseMailer.php) that leads to potential i...

8.1CVSS7.6AI score0.01902EPSS