First published: Fri Sep 06 2024(Updated: )
tgt (aka Linux target framework) before 1.0.93 attempts to achieve entropy by calling rand without srand. The PRNG seed is always 1, and thus the sequence of challenges is always identical.
Credit: cve@mitre.org
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.