CWE-338
Medium likelihoodUse of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
The product uses a Pseudo-Random Number Generator (PRNG) in a security context, but the PRNG's algorithm is not cryptographically strong.
171 vulnerabilities with CWE-338
CVE-2020-10560
MEDIUM
OSSN <5.3 - Info Disclosure
CVSS 5.9
CVE-2019-14480
CRITICAL
AdRem NetCrunch 10.6.0.4587 - Auth Bypass
CVSS 9.8
CVE-2019-19794
MEDIUM
miekg Go DNS <1.1.25 - Info Disclosure
CVSS 5.9
CVE-2019-8113
MEDIUM
Magento <2.2.10-2.3.3/2.3.2-p1 - Info Disclosure
CVSS 5.3
CVE-2019-10755
MEDIUM
Pac4j-SAML 3.X - Info Disclosure
CVSS 4.9
CVE-2019-10754
HIGH
Apereo CAS <6.1.0-RC5 - Info Disclosure
CVSS 8.1
CVE-2019-16303
CRITICAL
JHipster <6.3.0 & JHipster Kotlin <=1.1.0 - Privilege Escalation
CVSS 9.8
CVE-2019-7860
HIGH
Magento <2.1.18-2.3.2 - Info Disclosure
CVSS 7.5
CVE-2019-7855
MEDIUM
Magento <2.1.18-2.3.2 - Info Disclosure
CVSS 5.3
CVE-2019-5440
HIGH
Revive Adserver < v4.2.1 - Auth Bypass
CVSS 8.1
CVE-2019-11842
HIGH
Matrix Sydent <1.0.3 & Synapse <0.99.3.1 - Info Disclosure
CVSS 7.5
CVE-2019-11808
LOW
Ratpack <1.6.1 - Info Disclosure
CVSS 3.7
CVE-2018-25107
HIGH
Crypt::Random::Source <0.13 - Info Disclosure
CVSS 7.5
CVE-2018-15795
HIGH
Pivotal CredHub Service Broker <1.1.0 - Info Disclosure
CVSS 8.1
CVE-2018-17968
HIGH
RuletkaIo - Info Disclosure
CVSS 7.5
CVE-2018-17877
HIGH
Greedy 599 - Code Injection
CVSS 7.5
CVE-2018-12975
HIGH
CryptoSaga - Info Disclosure
CVSS 7.5
CVE-2018-5871
MEDIUM
Snapdragon - Info Disclosure
CVSS 6.5
CVE-2018-5837
HIGH
Snapdragon - Info Disclosure
CVSS 7.5
CVE-2018-11291
HIGH
Snapdragon - Cryptographic Issue
CVSS 7.5
CVE-2018-11290
HIGH
Snapdragon - Info Disclosure
CVSS 7.5
CVE-2018-17071
HIGH
Lucky9io - Info Disclosure
CVSS 7.5
CVE-2018-15552
HIGH
Simplelottery - Info Disclosure
CVSS 7.5
CVE-2018-16115
CRITICAL
Lightbend Akka <2.5.16 - Info Disclosure
CVSS 9.1
CVE-2018-12056
HIGH
All For One - Info Disclosure
CVSS 7.5
Details
Vulnerabilities
171
Exploit Likelihood
Medium