CVE-2019-11842

An issue was discovered in Matrix Sydent before 1.0.3 and Synapse before 0.99.3.1. Random number generation is mishandled, which makes it easier for attackers to predict a Sydent authentication token or a Synapse random ID.
Configurations

Configuration 1

cpe:2.3:a:matrix:sydent:*:*:*:*:*:*:*:*
cpe:2.3:a:matrix:synapse:*:*:*:*:*:*:*:*

Information

Published : 2019-05-09 06:29

Updated : 2019-05-10 01:57


NVD link : CVE-2019-11842

Mitre link : CVE-2019-11842

Products Affected
No products.
CWE
CWE-338

Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)