Vulnerabilities > Use of Insufficiently Random Values
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2021-04-23 | CVE-2021-26909 | Use of Insufficiently Random Values vulnerability in Automox Automox Agent prior to version 31 uses an insufficiently protected S3 bucket endpoint for storing sensitive files, which could be brute-forced by an attacker to subvert an organization's security program. | 5.3 |
| 2021-04-22 | CVE-2021-27393 | Use of Insufficiently Random Values vulnerability in Siemens products A vulnerability has been identified in Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2013.08), Nucleus Source Code (Versions including affected DNS modules). | 5.3 |
| 2021-04-22 | CVE-2021-25677 | Use of Insufficiently Random Values vulnerability in Siemens products A vulnerability has been identified in APOGEE PXC Compact (BACnet) (All versions < V3.5.5), APOGEE PXC Compact (P2 Ethernet) (All versions < V2.8.20), APOGEE PXC Modular (BACnet) (All versions < V3.5.5), APOGEE PXC Modular (P2 Ethernet) (All versions < V2.8.20), Nucleus NET (All versions), Nucleus ReadyStart V3 (All versions < V2017.02.3), Nucleus ReadyStart V3 (All versions < V2017.02.4), Nucleus ReadyStart V4 (All versions < V4.1.0), Nucleus Source Code (Versions including affected DNS modules), SIMOTICS CONNECT 400 (All versions < V0.5.0.0), SIMOTICS CONNECT 400 (All versions >= V0.5.0.0 < V1.0.0.0), TALON TC Compact (BACnet) (All versions < V3.5.5), TALON TC Modular (BACnet) (All versions < V3.5.5). | 5.3 |
| 2021-04-15 | CVE-2021-28055 | Use of Insufficiently Random Values vulnerability in Centreon 20.10.0 An issue was discovered in Centreon-Web in Centreon Platform 20.10.0. | 6.5 |
| 2021-04-13 | CVE-2021-21729 | Use of Insufficiently Random Values vulnerability in ZTE Zxhn H108N Firmware and Zxhn H168N Firmware Some ZTE products have CSRF vulnerability. | 6.5 |
| 2021-04-09 | CVE-2021-25375 | Use of Insufficiently Random Values vulnerability in Samsung Email Using predictable index for attachments in Samsung Email prior to version 6.1.41.0 allows remote attackers to get attachments of another emails when users open the malicious attachment. | 6.5 |
| 2021-03-25 | CVE-2021-3446 | Use of Insufficiently Random Values vulnerability in multiple products A flaw was found in libtpms in versions before 0.8.2. | 5.5 |
| 2021-03-23 | CVE-2021-28099 | Use of Insufficiently Random Values vulnerability in Netflix Hollow In Netflix OSS Hollow, since the Files.exists(parent) is run before creating the directories, an attacker can pre-create these directories with wide permissions. | 4.4 |
| 2021-03-22 | CVE-2021-22309 | Use of Insufficiently Random Values vulnerability in Huawei products There is insecure algorithm vulnerability in Huawei products. | 7.5 |
| 2021-03-10 | CVE-2021-0375 | Use of Insufficiently Random Values vulnerability in Google Android 11.0 In onPackageModified of VoiceInteractionManagerService.java, there is a possible change of default applications due to an insecure default value. | 5.5 |