EPSS
Percentile
58.6%
cryptiles is vulnerable to insecure random number generation. The application uses the randomDigits() method which does not have sufficient entropy to be securely random, allowing an attacker to gain access through a brute-force attack.
randomDigits()
github.com/hapijs/cryptiles/issues/34
github.com/hapijs/cryptiles/issues/35
www.npmjs.com/advisories/1464