Fallos del tipo CWE-338
125 resultadosCVE-2025-66565CRITICALFiber Utils UUIDv4 and UUID Silent Fallback to Predictable ValuesEPSS 0.4%CVE-2026-47372CRITICALCrypt::SaltedHash versions through 0.09 for Perl generate insecure random values for saltsEPSS 0.4%CVE-2025-40918MEDIUMAuthen::SASL::Perl::DIGEST_MD5 versions 2.04 through 2.1800 for Perl generates the cnonce insecurelyEPSS 0.4%CVE-2025-40920HIGHCatalyst::Authentication::Credential::HTTP versions 1.018 and earlier for Perl use insecurely generated noncesEPSS 0.4%CVE-2022-41210MEDIUMSAP Customer Data Cloud (Gigya mobile app for Android) - version 7.4, uses insecure random number generator program which makes it easy for EPSS 0.4%CVE-2025-40933HIGHApache::AuthAny::Cookie v0.201 or earlier for Perl generates session ids insecurelyEPSS 0.4%CVE-2026-25726HIGHCloudreve is vulnerable to Account Takeover via Weak Cryptographic Token Generation (Insecure PRNG Seeding)EPSS 0.4%CVE-2025-1828HIGHPerl's Crypt::Random module after 1.05 and before 1.56 may use rand() function for cryptographic functionsEPSS 0.4%CVE-2026-5080MEDIUMDancer::Session::Abstract versions through 1.3522 for Perl generates session ids insecurelyEPSS 0.4%CVE-2024-56830MEDIUMThe Net::EasyTCP package 0.15 through 0.26 for Perl uses Perl's builtin rand() if no strong randomization module is present.EPSS 0.4%CVE-2024-5264MEDIUMNetwork Key Transfer with AES KHT vulnerability in Luna EFTEPSS 0.4%CVE-2026-56141CRITICALIn JetBrains Hub before 2026.1.13757,
2025.3.148033,
2025.2.148048,
2025.1.148120,
2024.3.148430,
2024.2.148429 account takeover via predictEPSS 0.4%CVE-2025-69217HIGHCoturn has unsafe nonce and relay port randomization due to weak random number generation.EPSS 0.4%CVE-2022-48506LOWA flawed pseudorandom number generator in Dominion Voting Systems ImageCast Precinct (ICP and ICP2) and ImageCast Evolution (ICE) scanners aEPSS 0.4%CVE-2025-46653LOWFormidable (aka node-formidable) 2.1.0 through 3.x before 3.5.3 relies on hexoid to prevent guessing of filenames for untrusted executable cEPSS 0.4%CVE-2025-54883CRITICALVision UI's security-kit Contains Cryptographic WeaknessEPSS 0.3%CVE-2026-9733CRITICALMojolicious::Plugin::Web::Auth::OAuth2 versions through 0.17 for Perl have an insecure default state parameterEPSS 0.3%CVE-2026-5085CRITICALSolstice::Session versions through 1440 for Perl generates session ids insecurelyEPSS 0.3%CVE-2025-40925CRITICALStarch versions 0.14 and earlier generate session ids insecurelyEPSS 0.3%CVE-2024-53702MEDIUMUse of cryptographically weak pseudo-random number generator (PRNG) vulnerability in the SonicWall SMA100 SSLVPN backup code generator that,EPSS 0.3%