Lucene search
K

4 matches found

OSV
OSV
added 2025/11/25 3:27 p.m.6 views

CLSA-2025-1764084458 bind: Fix of 2 CVEs

CVE-2025-40780: fix randomness sources, drop obsolete PRNG test - CVE-2025-40778: fix NS caching, DNAME/referral handling, restore IPv6 TCP tests...

8.6CVSS6.9AI score0.00509EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2023/08/02 12:0 a.m.6 views

PT-2023-20644 · Softwarex · Softwarex

Name of the Vulnerable Software and Affected Versions: SoftwareX affected versions not specified Description: The issue is related to the integrated oAuth Authorization Service, where functions with insufficient randomness were used to generate authorization tokens. This made authorization codes...

7.5CVSS7.4AI score0.00995EPSS
Exploits0References7
RedHat Linux
RedHat Linux
added 2023/07/12 8:32 a.m.5 views

c-ares: Insufficient randomness in generation of DNS query IDs

A vulnerability was found in c-ares. This issue occurs when /dev/urandom or RtlGenRandom are unavailable, c-ares will use rand to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand, so it will generate predictable output...

6.5CVSS7.3AI score0.00905EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2023/06/14 8:43 a.m.6 views

c-ares: Insufficient randomness in generation of DNS query IDs

A vulnerability was found in c-ares. This issue occurs when /dev/urandom or RtlGenRandom are unavailable, c-ares will use rand to generate random numbers used for DNS query ids. This is not a CSPRNG, and it is also not seeded by srand, so it will generate predictable output...

6.5CVSS7.3AI score0.00905EPSS
Exploits0References5
Rows per page
Query Builder