CVE-2007-5502

Name of the Vulnerable Software and Affected Versions: OpenSSL FIPS Object Module version 1.1.1

Description: The issue concerns the PRNG implementation, which does not perform auto-seeding during the FIPS self-test. This results in the generation of random data that is more predictable than expected, making it easier for attackers to bypass protection mechanisms that rely on the randomness.

Recommendations: For OpenSSL FIPS Object Module version 1.1.1, at the moment, there is no information about a newer version that contains a fix for this vulnerability.