CVE-2021-34600

Telenot CompasX versions prior to 32.0 use a weak seed for random number generation leading to predictable AES keys used in the NFC tags used for local authorization of users. This may lead to total loss of trustworthiness of the installation.
References
Configurations

Configuration 1 (hide)

cpe:2.3:a:telenot:compasx:*:*:*:*:*:*:*:*

History

16 Sep 2024, 19:15

Type Values Removed Values Added
Summary (en) Telenot CompasX versions prior to 32.0 use a weak seed for random number generation leading to predictable AES keys used in the NFC tags used for local authorization of users. This may lead to total loss of trustworthiness of the installation. (en) Telenot CompasX versions prior to 32.0 use a weak seed for random number generation leading to predictable AES keys used in the NFC tags used for local authorization of users. This may lead to total loss of trustworthiness of the installation.

09 Aug 2023, 11:15

Type Values Removed Values Added
Summary Telenot CompasX versions prior to 32.0 use a weak seed for random number generation leading to predictable AES keys used in the NFC tags used for local authorization of users. This may lead to total loss of trustworthiness of the installation. Telenot CompasX versions prior to 32.0 use a weak seed for random number generation leading to predictable AES keys used in the NFC tags used for local authorization of users. This may lead to total loss of trustworthiness of the installation.

07 Jul 2023, 19:14

Type Values Removed Values Added
CWE CWE-338 CWE-335

Information

Published : 2022-01-20 12:15

Updated : 2024-09-16 19:15


NVD link : CVE-2021-34600

Mitre link : CVE-2021-34600

CVE.ORG link : CVE-2021-34600


JSON object : View

Products Affected

telenot

  • compasx
CWE
CWE-335

Incorrect Usage of Seeds in Pseudo-Random Number Generator (PRNG)