Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
Insufficient randomness in github.com/Masterminds/goutils
Vulnerability Description
Randomly-generated alphanumeric strings contain significantly less entropy than expected. The RandomAlphaNumeric and CryptoRandomAlphaNumeric functions always return strings containing at least one digit from 0 to 9. This significantly reduces the amount of entropy in short strings generated by these functions.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
GoUtils 安全特征问题漏洞
Vulnerability Description
GoUtils是Masterminds开源的一个库。为用户提供了以各种方式操纵字符串的实用函数。 Masterminds goutils存在安全漏洞,该漏洞源于随机生成的字母数字字符串包含的熵比预期的要少得多,RandomAlphaNumeric 和 CryptoRandomAlphaNumeric 函数始终返回包含至少一位从 0 到 9 的字符串,导致减少了这些函数生成的短字符串中的熵量。
CVSS Information
N/A
Vulnerability Type
N/A