Erlang Crypto vulnerabilities

1 known vulnerability affecting erlang/crypto.

Total CVEs

1

CISA KEV

0

Public exploits

0

Exploited in wild

0

Severity breakdown

HIGH1

Vulnerabilities

Page 1 of 1

CVE-2011-0766HIGHCVSS 7.8≤ 2.0.2.12011-05-31

CVE-2011-0766 [HIGH] CWE-310 CVE-2011-0766: The random number generator in the Crypto application before 2.0.2.2, and SSH before 2.0.5, as used The random number generator in the Crypto application before 2.0.2.2, and SSH before 2.0.5, as used in the Erlang/OTP ssh library before R14B03, uses predictable seeds based on the current time, which makes it easier for remote attackers to guess DSA host and SSH session keys.

Erlang Crypto vulnerabilities | cvebase