Vulnerabilities > CVE-2012-1577 - Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in multiple products

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
dietlibc-project
openbsd
debian
CWE-335
NVD
Published: 2019-12-10
Updated: 2019-12-17

Summary

lib/libc/stdlib/random.c in OpenBSD returns 0 when seeded with 0.

Vulnerable Configurations

Part Description Count
Application
Dietlibc_Project
1
OS
Openbsd
1
OS
Debian
3

Common Weakness Enumeration (CWE)

References