CVE-2024-1579

High

Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Secomea GateManager (Webserver modules) allows Session…

Secomea·CWE-335·Published 2024-04-29

CVSS

8.1

EPSS

0.01

KEV

Exploits

cve.orgen

204 chars

Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG) vulnerability in Secomea GateManager (Webserver modules) allows Session Hijacking.This issue affects GateManager: before 11.2.624071020.

NVDen

204 chars

NVDes

241 chars

El uso incorrecto de semillas en la vulnerabilidad del generador de números pseudoaleatorios (PRNG) en Secomea GateManager (módulos de servidor web) permite el secuestro de sesión. Este problema afecta a GateManager: antes de 11.2.624071020.

CVSS metrics across sources

Version	Type	Source	Base	Exp	Impact	Vector
3.1	Primary	cve.org	8.1	—	—	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
3.1	Secondary	NVD	8.1	2.2	5.9	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H