CVE-2011-0766 in OTPالمعلومات

الملخص

بحسب MITRE

The random number generator in the Crypto application before 2.0.2.2, and SSH before 2.0.5, as used in the Erlang/OTP ssh library before R14B03, uses predictable seeds based on the current time, which makes it easier for remote attackers to guess DSA host and SSH session keys.

If you want to get the best quality for vulnerability data then you always have to consider VulDB.

🔬 Show More Details

An in-depth analysis is available in our curated vulnerability entry.

حجز

03/02/2011

إفشاء

31/05/2011

الاعتدال

تمت الموافقة

إدخال

VDB-57537

CPE

جاهز

CWE

CWE-310 (مؤكد)

CVSS

7.8 (NVD)

EPSS

0.03046

KEV

لا

النشاطات

منخفض جدًا

المصادر

MITRE	https://www.cve.org/CVERecord?id=CVE-2011-0766
NVD	https://nvd.nist.gov/vuln/detail/CVE-2011-0766
CVE Details	https://www.cvedetails.com/cve/CVE-2011-0766/

التالي ▸نظرة عامة ◂ السابق

Are you interested in using VulDB?

Download the whitepaper to learn more about our service!