Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
Zope before 2.13.19, as used in Plone before 4.2.3 and 4.3 before beta 1, does not reseed the pseudo-random number generator (PRNG), which makes it easier for remote attackers to guess the value via unspecified vectors. NOTE: this issue was SPLIT from CVE-2012-5508 due to different vulnerability types (ADT2).
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Zope 安全漏洞
Vulnerability Description
Zope是Zope公司的一套基于Python的开源面向对象的Web应用服务器。Plone是美国Plone基金会的一套建立在Zope上的免费且开源的内容管理系统(CMS)。 Plone 4.2.3之前版本和beta 1之前4.3版本中使用的Zope 2.13.19之前版本中存在安全漏洞,该漏洞源于程序没有重新为pseudo-random number generator (PRNG)设定种子。远程攻击者可利用该漏洞猜出该值。
CVSS Information
N/A
Vulnerability Type
N/A