PT-2021-22746 · Showdoc · Showdoc

Published

2021-12-01

Updated

2021-12-03

CVE-2021-3990

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:H/PR:N/UI:N/S:C/C:L/I:L/A:L

Name of the Vulnerable Software and Affected Versions showdoc (affected versions not specified)

Description The issue concerns the use of a cryptographically weak pseudo-random number generator (PRNG) in showdoc. This weakness can potentially lead to predictable and insecure outcomes in applications relying on random number generation for security purposes.

Recommendations At the moment, there is no information about a newer version that contains a fix for this vulnerability.

Exploit

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-338

Related Identifiers

CVE-2021-3990

GHSA-VRGH-5W3C-GGF8

Affected Products

Showdoc

PT-2021-22746 · Showdoc · Showdoc

CVE-2021-3990

Weakness Enumeration

Related Identifiers

Affected Products

References · 8