Vulnerabilities > Netflix > Lemur > High

DATE CVE VULNERABILITY TITLE RISK
2023-04-19 CVE-2023-30797 Use of Insufficiently Random Values vulnerability in Netflix Lemur
Netflix Lemur before version 1.3.2 used insufficiently random values when generating default credentials.
network
low complexity
netflix CWE-330
7.5
2017-08-09 CVE-2015-7764 Insufficient Entropy vulnerability in Netflix Lemur 0.1.4
Lemur 0.1.4 does not use sufficient entropy in its IV when encrypting AES in CBC mode.
network
low complexity
netflix CWE-331
7.5