EPSS
Percentile
40.1%
simplesamlphp is vulnerable to insecure random number generation. The library does not use a cryptographically secure number generator, using the first 16 bits of the hash of the given secret instead.
simplesamlphp.org/security/201703-02