Vulnerabilities > Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-06-16 | CVE-2021-32033 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Protectimus Slim NFC 70 Firmware 10.01 Protectimus SLIM NFC 70 10.01 devices allow a Time Traveler attack in which attackers can predict TOTP passwords in certain situations. | 4.6 |
| 2021-03-03 | CVE-2020-28597 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Epignosishq Efront 5.2.17/5.2.21 A predictable seed vulnerability exists in the password reset functionality of Epignosis EfrontPro 5.2.21. | 7.5 |
| 2021-02-15 | CVE-2021-27211 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Steghide Project Steghide 0.5.1 steghide 0.5.1 relies on a certain 32-bit seed value, which makes it easier for attackers to detect hidden data. | 7.5 |
| 2020-06-03 | CVE-2020-7010 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Elastic Cloud on Kubernetes Elastic Cloud on Kubernetes (ECK) versions prior to 1.1.0 generate passwords using a weak random number generator. | 7.5 |
| 2020-06-03 | CVE-2020-13784 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Dlink Dir-865L Firmware 1.20B01 D-Link DIR-865L Ax 1.20B01 Beta devices have a predictable seed in a Pseudo-Random Number Generator. | 7.5 |
| 2019-12-10 | CVE-2012-1577 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in multiple products lib/libc/stdlib/random.c in OpenBSD returns 0 when seeded with 0. | 9.8 |
| 2019-09-10 | CVE-2019-11495 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Couchbase Server 5.1.1 In Couchbase Server 5.1.1, the cookie used for intra-node communication was not generated securely. | 9.8 |
| 2019-04-29 | CVE-2018-12384 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Mozilla Network Security Services When handling a SSLv2-compatible ClientHello request, the server doesn't generate a new random value but sends an all-zero value instead. | 5.9 |
| 2019-04-07 | CVE-2019-10908 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Airsonic Project Airsonic 10.2.1 In Airsonic 10.2.1, RecoverController.java generates passwords via org.apache.commons.lang.RandomStringUtils, which uses java.util.Random internally. | 9.8 |
| 2018-07-05 | CVE-2018-12520 | Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Ntop Ntopng 3.4 An issue was discovered in ntopng 3.4 before 3.4.180617. | 8.1 |