Lucene search
@huntrdevCVELIST:CVE-2021-3689HistoryAug 10, 2021 - 10:21 a.m.
CVE-2021-3689 Use of Predictable Algorithm in Random Number Generator in yiisoft/yii2
2021-08-1010:21:30
CWE-1241
@huntrdev
www.cve.org
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
39.0%
yii2 is vulnerable to Use of Predictable Algorithm in Random Number Generator
CNA Affected
[
{
"product": "yiisoft/yii2",
"vendor": "yiisoft",
"versions": [
{
"lessThanOrEqual": "2.0.42.1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]Related
huntr
huntr
in yiisoft/yii2
2021-07-29 07:55:49
veracode
veracode
Insecure Random Number Generation
2021-08-11 04:14:52
prion
prion
Code injection
2021-08-10 11:15:00
osv
osv
CVE-2021-3689
2021-08-10 11:15:09
Use of Insufficiently Random Values in yiisoft/yii2-dev
2021-09-01 18:35:34
nvd
nvd
CVE-2021-3689
2021-08-10 11:15:09
github
github
Use of Insufficiently Random Values in yiisoft/yii2-dev
2021-09-01 18:35:34
cve
cve
CVE-2021-3689
2021-08-10 11:15:09
8.1 High
CVSS3
Attack Vector
NETWORK
Attack Complexity
HIGH
Privileges Required
NONE
User Interaction
NONE
Scope
UNCHANGED
Confidentiality Impact
HIGH
Integrity Impact
HIGH
Availability Impact
HIGH
CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
0.001 Low
EPSS
Percentile
39.0%
Related for CVELIST:CVE-2021-3689