Vulnerabilities > Use of Insufficiently Random Values
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-03-23 | CVE-2021-28099 | Use of Insufficiently Random Values vulnerability in Netflix Hollow In Netflix OSS Hollow, since the Files.exists(parent) is run before creating the directories, an attacker can pre-create these directories with wide permissions. | 4.4 |
| 2021-03-22 | CVE-2021-22309 | Use of Insufficiently Random Values vulnerability in Huawei products There is insecure algorithm vulnerability in Huawei products. | 7.5 |
| 2021-03-10 | CVE-2021-0375 | Use of Insufficiently Random Values vulnerability in Google Android 11.0 In onPackageModified of VoiceInteractionManagerService.java, there is a possible change of default applications due to an insecure default value. | 5.5 |
| 2021-03-01 | CVE-2021-27884 | Use of Insufficiently Random Values vulnerability in Ymfe Yapi Weak JSON Web Token (JWT) signing secret generation in YMFE YApi through 1.9.2 allows recreation of other users' JWT tokens. | 5.1 |
| 2021-02-19 | CVE-2020-36252 | Use of Insufficiently Random Values vulnerability in Owncloud ownCloud Server 10.x before 10.3.1 allows an attacker, who has one outgoing share from a victim, to access any version of any file by sending a request for a predictable ID number. | 5.7 |
| 2021-02-01 | CVE-2020-13860 | Use of Insufficiently Random Values vulnerability in Mofinetwork Mofi4500-4Gxelte Firmware 4.0.8Std An issue was discovered on Mofi Network MOFI4500-4GXeLTE 4.0.8-std devices. | 7.5 |
| 2021-01-19 | CVE-2020-27264 | Use of Insufficiently Random Values vulnerability in Sooil products In SOOIL Developments Co., Ltd Diabecare RS, AnyDana-i and AnyDana-A, the communication protocol of the insulin pump and its AnyDana-i and AnyDana-A mobile applications use deterministic keys, which allows unauthenticated, physically proximate attackers to brute-force the keys via Bluetooth Low Energy. | 8.8 |
| 2020-12-11 | CVE-2020-17470 | Use of Insufficiently Random Values vulnerability in Butok Fnet An issue was discovered in FNET through 4.6.4. | 5.3 |
| 2020-12-11 | CVE-2020-15023 | Use of Insufficiently Random Values vulnerability in Askey Ap5100W Firmware 1.01.097 Askey AP5100W devices through AP5100W_Dual_SIG_1.01.097 are affected by WPS PIN offline brute-force cracking. | 5.9 |
| 2020-11-17 | CVE-2020-26550 | Use of Insufficiently Random Values vulnerability in Aviatrix Controller 5.3.1516 An issue was discovered in Aviatrix Controller before R5.3.1151. | 7.5 |