Описание
An HTTP digest authentication nonce value was generated using rand() which could lead to predictable values. This vulnerability affects Firefox < 126.
Ссылки
- Issue TrackingExploitVendor Advisory
- Vendor Advisory
- Issue TrackingExploitVendor Advisory
- Vendor Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 126.0 (исключая)
cpe:2.3:a:mozilla:firefox:*:*:*:*:-:*:*:*
EPSS
Процентиль: 8%
0.00042
Низкий
5.9 Medium
CVSS3
Дефекты
CWE-338
Связанные уязвимости
CVSS3: 5.9
ubuntu
больше 1 года назад
An HTTP digest authentication nonce value was generated using `rand()` which could lead to predictable values. This vulnerability affects Firefox < 126.
msrc
3 месяца назад
An HTTP digest authentication nonce value was generated using `rand()` which could lead to predictable values. This vulnerability affects Firefox < 126.
CVSS3: 5.9
debian
больше 1 года назад
An HTTP digest authentication nonce value was generated using `rand()` ...
CVSS3: 5.9
github
больше 1 года назад
An HTTP digest authentication nonce value was generated using `rand()` which could lead to predictable values. This vulnerability affects Firefox < 126.
EPSS
Процентиль: 8%
0.00042
Низкий
5.9 Medium
CVSS3
Дефекты
CWE-338