← back
CVE-2012-2681

CVE-2012-2681

EPSS 2.2%
Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, uses predictable random numbers to generate session keys, which makes it easier for remote attackers to guess the session key.
Affected products
n/a · n/a

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →
References
http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=827558http://rhn.redhat.com/errata/RHSA-2012-1278.htmlhttp://rhn.redhat.com/errata/RHSA-2012-1281.htmlhttp://secunia.com/advisories/50660https://exchange.xforce.ibmcloud.com/vulnerabilities/78771http://www.securityfocus.com/bid/55618