Vulnerabilities > Use of Insufficiently Random Values
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-06-12 | CVE-2023-1898 | Use of Insufficiently Random Values vulnerability in Atlascopco Power Focus 6000 Firmware Atlas Copco Power Focus 6000 web server uses a small amount of session ID numbers. | 7.5 |
| 2023-06-12 | CVE-2020-36732 | Use of Insufficiently Random Values vulnerability in Crypto-Js Project Crypto-Js The crypto-js package before 3.2.1 for Node.js generates random numbers by concatenating the string "0." with an integer, which makes the output more predictable than necessary. | 5.3 |
| 2023-05-30 | CVE-2022-43485 | Use of Insufficiently Random Values vulnerability in Honeywell Onewireless Network Wireless Device Manager Firmware R322.1 Use of Insufficiently Random Values in Honeywell OneWireless. | 6.5 |
| 2023-05-25 | CVE-2023-31124 | Use of Insufficiently Random Values vulnerability in multiple products c-ares is an asynchronous resolver library. | 3.7 |
| 2023-04-19 | CVE-2023-30797 | Use of Insufficiently Random Values vulnerability in Netflix Lemur Netflix Lemur before version 1.3.2 used insufficiently random values when generating default credentials. | 7.5 |
| 2023-04-04 | CVE-2023-26855 | Use of Insufficiently Random Values vulnerability in Churchcrm 4.5.3 The hashing algorithm of ChurchCRM v4.5.3 utilizes a non-random salt value which allows attackers to use precomputed hash tables or dictionary attacks to crack the hashed passwords. | 7.5 |
| 2023-03-31 | CVE-2023-0343 | Use of Insufficiently Random Values vulnerability in Akuvox E11 Firmware Akuvox E11 contains a function that encrypts messages which are then forwarded. | 7.5 |
| 2023-03-16 | CVE-2022-26080 | Use of Insufficiently Random Values vulnerability in ABB products Use of Insufficiently Random Values vulnerability in ABB Pulsar Plus System Controller NE843_S, ABB Infinity DC Power Plant.This issue affects Pulsar Plus System Controller NE843_S : comcode 150042936; Infinity DC Power Plant: H5692448 G104 G842 G224L G630-4 G451C(2) G461(2) – comcode 150047415. | 4.3 |
| 2023-02-23 | CVE-2023-20016 | Use of Insufficiently Random Values vulnerability in Cisco products A vulnerability in the backup configuration feature of Cisco UCS Manager Software and in the configuration export feature of Cisco FXOS Software could allow an unauthenticated attacker with access to a backup file to decrypt sensitive information stored in the full state and configuration backup files. | 6.5 |
| 2023-02-10 | CVE-2022-43501 | Use of Insufficiently Random Values vulnerability in Elwsc products KASAGO TCP/IP stack provided by Zuken Elmic generates ISNs(Initial Sequence Number) for TCP connections from an insufficiently random source. | 9.1 |