Описание
A predictable seed in pseudo-random number generator vulnerability has been discovered in firmware version 3.60 of the Click Plus PLC. The vulnerability relies on the fact that the software implements a predictable seed for its pseudo-random number generator, which compromises the security of the generated private keys.
EPSS
Процентиль: 16%
0.00052
Низкий
8.3 High
CVSS3
Дефекты
CWE-337
Связанные уязвимости
CVSS3: 8.3
github
5 месяцев назад
A predictable seed in pseudo-random number generator vulnerability has been discovered in firmware version 3.60 of the Click Plus PLC. The vulnerability relies on the fact that the software implements a predictable seed for its pseudo-random number generator, which compromises the security of the generated private keys.
EPSS
Процентиль: 16%
0.00052
Низкий
8.3 High
CVSS3
Дефекты
CWE-337