Openmoney Api
1 CVEs
product
Monthly
Openmoney API through 2020-06-29 uses the JavaScript Math.random function, which does not provide cryptographically secure random numbers. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Information Disclosure
Openmoney Api
NVD
GitHub
CVSS 3.1
7.5
EPSS
1.2%
EPSS 1%
CVSS 7.5
HIGH
PATCH
This Week
Openmoney API through 2020-06-29 uses the JavaScript Math.random function, which does not provide cryptographically secure random numbers. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity.
Information Disclosure
Openmoney Api
NVD
GitHub