Vulnerabilities > CVE-2012-1577 - Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in multiple products

047910
CVSS 9.8 - CRITICAL
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
HIGH
Integrity impact
HIGH
Availability impact
HIGH
network
low complexity
openbsd
dietlibc-project
debian
CWE-335
critical
NVD
Published: 2019-12-10
Updated: 2019-12-17

Summary

lib/libc/stdlib/random.c in OpenBSD returns 0 when seeded with 0.

Vulnerable Configurations

Part Description Count
OS
Openbsd
1
OS
Debian
3
Application
Dietlibc_Project
1

Common Weakness Enumeration (CWE)

References