CVE-2016-6485
published 2017-03-01CVE-2016-6485: The __construct function in Framework/Encryption/Crypt.php in Magento 2 uses the PHP rand function to generate a random number for the initialization vector…
PriorityP336high7.5CVSS 3.0
AVNACLPRNUINSUCHINAN
EPSS
0.85%
53.5th percentile
The __construct function in Framework/Encryption/Crypt.php in Magento 2 uses the PHP rand function to generate a random number for the initialization vector, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by guessing the value.
Affected
2 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| magento | community-edition | >= 2.0 < 2.2.6 | 2.2.6 |
| magento | project-community-edition | 2.0 – 2.0.2 | — |
CVSS provenance
nvdv3.07.5HIGHCVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
nvdv2.05.0MEDIUMAV:N/AC:L/Au:N/C:P/I:N/A:N
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
GHSA
Unauthenticated crypto and weak IV in Magento\Framework\Encryption
ghsa·2019-11-20
CVE-2016-6485 [HIGH] CWE-327 Unauthenticated crypto and weak IV in Magento\Framework\Encryption
Unauthenticated crypto and weak IV in Magento\Framework\Encryption
The __construct function in Framework/Encryption/Crypt.php in Magento 2 uses the PHP rand function to generate a random number for the initialization vector, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by guessing the value.
OSV
Unauthenticated crypto and weak IV in Magento\Framework\Encryption
osv·2019-11-20
CVE-2016-6485 [HIGH] Unauthenticated crypto and weak IV in Magento\Framework\Encryption
Unauthenticated crypto and weak IV in Magento\Framework\Encryption
The __construct function in Framework/Encryption/Crypt.php in Magento 2 uses the PHP rand function to generate a random number for the initialization vector, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by guessing the value.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
http://www.openwall.com/lists/oss-security/2016/07/19/3http://www.openwall.com/lists/oss-security/2016/07/27/14https://github.com/magento/magento2/pull/15017http://www.openwall.com/lists/oss-security/2016/07/19/3http://www.openwall.com/lists/oss-security/2016/07/27/14https://github.com/magento/magento2/pull/15017
2017-03-01
Published