Vulnerabilities > Use of Insufficiently Random Values

DATE CVE VULNERABILITY TITLE RISK
2023-10-10 CVE-2020-27630 Use of Insufficiently Random Values vulnerability in Silabs Uc/Tcp-Ip 3.6.0
In Silicon Labs uC/TCP-IP 3.6.0, TCP ISNs are improperly random.
network
low complexity
silabs CWE-330
critical
 9.8
9.8
2023-10-10 CVE-2020-27631 Use of Insufficiently Random Values vulnerability in Oryx-Embedded Cyclonetcp 1.9.6
In Oryx CycloneTCP 1.9.6, TCP ISNs are improperly random.
network
low complexity
oryx-embedded CWE-330
critical
 9.8
9.8
2023-10-10 CVE-2020-27633 Use of Insufficiently Random Values vulnerability in Butok Fnet 4.6.3
In FNET 4.6.3, TCP ISNs are improperly random.
network
low complexity
butok CWE-330
critical
 9.1
9.1
2023-10-10 CVE-2020-27634 Use of Insufficiently Random Values vulnerability in Contiki-Ng 4.5
In Contiki 4.5, TCP ISNs are improperly random.
network
low complexity
contiki-ng CWE-330
critical
 9.1
9.1
2023-10-10 CVE-2020-27635 Use of Insufficiently Random Values vulnerability in Capgemini Picotcp 1.7.0
In PicoTCP 1.7.0, TCP ISNs are improperly random.
network
low complexity
capgemini CWE-330
critical
 9.1
9.1
2023-10-10 CVE-2020-27636 Use of Insufficiently Random Values vulnerability in Microchip Mplab Network Creator 3.6.1
In Microchip MPLAB Net 3.6.1, TCP ISNs are improperly random.
network
low complexity
microchip CWE-330
critical
 9.1
9.1
2023-09-11 CVE-2023-41879 Use of Insufficiently Random Values vulnerability in Openmage Magento
Magento LTS is the official OpenMage LTS codebase.
network
low complexity
openmage CWE-330
7.5
7.5
2023-09-05 CVE-2023-34353 Use of Insufficiently Random Values vulnerability in Openautomationsoftware OAS Platform 18.00.0072
An authentication bypass vulnerability exists in the OAS Engine authentication functionality of Open Automation Software OAS Platform v18.00.0072.
network
low complexity
openautomationsoftware CWE-330
7.5
7.5
2023-09-02 CVE-2023-39979 Use of Insufficiently Random Values vulnerability in Moxa Mxsecurity 1.0/1.0.1
There is a vulnerability in MXsecurity versions prior to 1.0.1 that can be exploited to bypass authentication.
network
low complexity
moxa CWE-330
critical
 9.8
9.8
2023-08-15 CVE-2023-4344 Use of Insufficiently Random Values vulnerability in Broadcom Raid Controller web Interface 51.12.02779
Broadcom RAID Controller web interface is vulnerable to insufficient randomness due to improper use of ssl.rnd to setup CIM connection
network
low complexity
broadcom CWE-330
critical
 9.8
9.8