0.002 Low
EPSS
Percentile
59.4%
otp-generator is using insecure random. It generates random number for one-time passwords by using insecure Math.Random, allowing an attacker to brute-force.
Math.Random
github.com/Maheshkumar-Kakade/otp-generator/commit/b27de1ce439ae7f533cec26677e9698671275b70
github.com/Maheshkumar-Kakade/otp-generator/issues/12