Lucene search
MitreCVE-2008-3072HistoryJul 08, 2008 - 6:41 p.m.
CVE-2008-3072
2008-07-0818:41:00
CWE-189
mitre
web.nvd.nist.gov
27
cve-2008-3072
simple machines forum
smf
php security
random number generator
nvd
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.6
Confidence
Low
EPSS
0.002
Percentile
64.6%
Simple Machines Forum (SMF) 1.1.x before 1.1.5 and 1.0.x before 1.0.13, when running in PHP before 4.2.0, does not properly seed the random number generator, which has unknown impact and attack vectors.
Affected configurations
Node
simple_machinessimple_machines_forumRange≤1.0.12
ORsimple_machinessimple_machines_forumRange≤1.1.4
| Vendor | Product | Version | CPE |
|---|---|---|---|
| simple_machines | simple_machines_forum | * | cpe:2.3:a:simple_machines:simple_machines_forum:*:*:*:*:*:*:*:* |
Related
cvelist
cvelist
CVE-2008-3072
2008-07-08 18:00:00
nvd
nvd
CVE-2008-3072
2008-07-08 18:41:00
prion
prion
Design/Logic Flaw
2008-07-08 18:41:00
CVSS2
7.5
Attack Vector
NETWORK
Attack Complexity
LOW
Authentication
NONE
Confidentiality Impact
PARTIAL
Integrity Impact
PARTIAL
Availability Impact
PARTIAL
AV:N/AC:L/Au:N/C:P/I:P/A:P
AI Score
6.6
Confidence
Low
EPSS
0.002
Percentile
64.6%
Related for CVE-2008-3072