CVE-2012-2681

Exploit

EPSS 0.65%
Published 28.09.2012 17:55:00
Last modified 11.04.2025 00:51:21
Source secalert@redhat.com
Teams watchlist Login
Open Login

Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, uses predictable random numbers to generate session keys, which makes it easier for remote attackers to guess the session key.

Affected products Warnungen 0 Metrics 2 CWE 0 References 9

Data is provided by the National Vulnerability Database (NVD)

Trevor Mckay ≫ Cumin Version <= 0.1.5192-4

Trevor Mckay ≫ Cumin Version0.1.3160-1

Trevor Mckay ≫ Cumin Version0.1.4369-1

Trevor Mckay ≫ Cumin Version0.1.4410-2

Trevor Mckay ≫ Cumin Version0.1.4494-1

Trevor Mckay ≫ Cumin Version0.1.4794-1

Trevor Mckay ≫ Cumin Version0.1.4916-1

Trevor Mckay ≫ Cumin Version0.1.5098-2

Trevor Mckay ≫ Cumin Version0.1.5192-1

Redhat ≫ Enterprise Mrg Version2.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.65%	0.684

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	5.8	8.6	4.9	AV:N/AC:M/Au:N/C:P/I:P/A:N

http://rhn.redhat.com/errata/RHSA-2012-1278.html

Vendor Advisory

http://rhn.redhat.com/errata/RHSA-2012-1281.html

Vendor Advisory

http://secunia.com/advisories/50660

http://www.securityfocus.com/bid/55618

http://bugzilla.redhat.com/bugzilla/show_bug.cgi?id=827558

Exploit

https://exchange.xforce.ibmcloud.com/vulnerabilities/78771

https://nvd.nist.gov/vuln/detail/CVE-2012-2681

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2012-2681

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2012-2681

EUVD