CVE-2012-2681

Exploit

EPSS 0.65%
Veröffentlicht 28.09.2012 17:55:00
Zuletzt bearbeitet 11.04.2025 00:51:21
Quelle secalert@redhat.com
CVE-Watchlists
Login
Unerledigt
Login

Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, uses predictable random numbers to generate session keys, which makes it easier for remote attackers to guess the session key.

Betroffene Produkte Warnungen 0 Metriken 2 CWE 0 Referenzen 9

Daten sind bereitgestellt durch National Vulnerability Database (NVD)

Trevor Mckay ≫ Cumin Version <= 0.1.5192-4

Trevor Mckay ≫ Cumin Version0.1.3160-1

Trevor Mckay ≫ Cumin Version0.1.4369-1

Trevor Mckay ≫ Cumin Version0.1.4410-2

Trevor Mckay ≫ Cumin Version0.1.4494-1

Trevor Mckay ≫ Cumin Version0.1.4794-1

Trevor Mckay ≫ Cumin Version0.1.4916-1

Trevor Mckay ≫ Cumin Version0.1.5098-2

Trevor Mckay ≫ Cumin Version0.1.5192-1

Redhat ≫ Enterprise Mrg Version2.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Typ	Quelle	Score	Percentile
EPSS	FIRST.org	0.65%	0.684

CVSS Metriken
Quelle	Base Score	Exploit Score	Impact Score	Vector String
nvd@nist.gov	5.8	8.6	4.9	AV:N/AC:M/Au:N/C:P/I:P/A:N

http://rhn.redhat.com/errata/RHSA-2012-1278.html

Vendor Advisory

http://rhn.redhat.com/errata/RHSA-2012-1281.html

Vendor Advisory

http://secunia.com/advisories/50660

http://www.securityfocus.com/bid/55618

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=827558

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/78771

https://nvd.nist.gov/vuln/detail/CVE-2012-2681

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-2681

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-2681

EUVD