CVE-2013-7372
EXPLOITED IN THE WILDApache Harmony <6.0M3 - Cryptographic Protection Bypass
Title source: llmExploitation Summary
CVE-2013-7372 has been observed exploited in the wild (reported by VulnCheck KEV, InTheWild.io).
Description
The engineNextBytes function in classlib/modules/security/src/main/java/common/org/apache/harmony/security/provider/crypto/SHA1PRNG_SecureRandomImpl.java in the SecureRandom implementation in Apache Harmony through 6.0M3, as used in the Java Cryptography Architecture (JCA) in Android before 4.4 and other products, when no seed is provided by the user, uses an incorrect offset value, which makes it easier for attackers to defeat cryptographic protection mechanisms by leveraging the resulting PRNG predictability, as exploited in the wild against Bitcoin wallet applications in August 2013.
References (4)
Core 4
Core References
Exploit x_refsource_misc
http://www.nds.rub.de/media/nds/veroeffentlichungen/2013/03/25/paper_2.pdf
Patch x_refsource_confirm
https://android.googlesource.com/platform/libcore/+/kitkat-release/luni/src/main/java/org/apache/harmony/security/provider/crypto/SHA1PRNG_SecureRandomImpl.java
Various Sources x_refsource_misc
https://bitcoin.org/en/alert/2013-08-11-android
Patch x_refsource_confirm
http://android-developers.blogspot.com.au/2013/08/some-securerandom-thoughts.html
Scores
EPSS
0.0076
EPSS Percentile
73.7%
Details
VulnCheck KEV
2013-08-14
InTheWild.io
2014-04-30
CWE
CWE-310
Status
published
Products (13)
apache/harmony
< 6.0
google/android
4.0
google/android
4.0.1
google/android
4.0.2
google/android
4.0.3
google/android
4.0.4
google/android
4.1
google/android
4.1.2
google/android
4.2
google/android
4.2.1
... and 3 more
Published
Apr 29, 2014
Tracked Since
Feb 18, 2026