Vulnerabilities > Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)

DATE CVE VULNERABILITY TITLE RISK
2024-02-01 CVE-2023-4472 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Objectplanet Opinio
Objectplanet Opinio version 7.22 and prior uses a cryptographically weak pseudo-random number generator (PRNG) coupled to a predictable seed, which could lead to an unauthenticated account takeover of any user on the application.
network
low complexity
objectplanet CWE-335
critical
9.8
2023-12-14 CVE-2023-49343 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Ubuntubudgie Budgie Extras
Temporary data passed between application components by Budgie Extras Dropby applet could potentially be viewed or manipulated.
local
low complexity
ubuntubudgie CWE-335
7.8
2023-01-20 CVE-2022-40267 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Mitsubishielectric products
Predictable Seed in Pseudo-Random Number Generator (PRNG) vulnerability in Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5U-xMy/z (x=32,64,80, y=T,R, z=ES,DS,ESS,DSS) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 17X**** or later, and versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-xMy/z (x=32,64,96, y=T, z=D,DSS)) with serial number 179**** and prior, and versions 1.074 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MT/DSS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/z (x=24,40,60, y=T,R, z=ES,ESS) versions 1.042 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UJ-xMy/ES-A (x=24,40,60, y=T,R) versions 1.043 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5S-xMy/z (x=30,40,60,80, y=T,R, z=ES,ESS) versions 1.003 and prior, Mitsubishi Electric Corporation MELSEC iQ-F Series FX5UC-32MR/DS-TS versions 1.280 and prior, Mitsubishi Electric Corporation MELSEC iQ-R Series R00/01/02CPU all versions, Mitsubishi Electric Corporation MELSEC iQ-R Series R04/08/16/32/120(EN)CPU all versions allows a remote unauthenticated attacker to access the Web server function by guessing the random numbers used for authentication from several used random numbers.
network
low complexity
mitsubishielectric CWE-335
critical
9.1
2022-10-13 CVE-2022-42159 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Dlink products
D-Link COVR 1200,1202,1203 v1.08 was discovered to have a predictable seed in a Pseudo-Random Number Generator.
network
low complexity
dlink CWE-335
4.3
2022-10-06 CVE-2022-31008 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in VMWare Rabbitmq
RabbitMQ is a multi-protocol messaging and streaming broker.
network
low complexity
vmware CWE-335
7.5
2022-06-27 CVE-2022-31034 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Argoproj Argo CD
Argo CD is a declarative, GitOps continuous delivery tool for Kubernetes.
network
high complexity
argoproj CWE-335
8.1
2022-05-18 CVE-2019-25061 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Random Password Generator Project Random Password Generator
The random_password_generator (aka RandomPasswordGenerator) gem through 1.0.0 for Ruby uses Kernel#rand to generate passwords, which, due to its cyclic nature, can facilitate password prediction.
5.0
2022-04-08 CVE-2022-26852 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Dell EMC Powerscale Onefs
Dell PowerScale OneFS, versions 8.2.x-9.3.x, contain a predictable seed in pseudo-random number generator.
network
low complexity
dell CWE-335
7.5
2022-01-28 CVE-2016-3735 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Piwigo
Piwigo is image gallery software written in PHP.
network
high complexity
piwigo CWE-335
8.1
2022-01-20 CVE-2021-34600 Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Telenot Compasx
Telenot CompasX versions prior to 32.0 use a weak seed for random number generation leading to predictable AES keys used in the NFC tags used for local authorization of users.
local
low complexity
telenot CWE-335
5.5