CVE-2021-29245

BTCPay Server through 1.0.7.0 uses a weak method Next to produce pseudo-random values to generate a legacy API key.
References
Configurations

Configuration 1

cpe:2.3:a:btcpayserver:btcpay_server:*:*:*:*:*:*:*:*

Information

Published : 2021-05-05 01:15

Updated : 2021-05-11 01:50


NVD link : CVE-2021-29245

Mitre link : CVE-2021-29245

Products Affected
No products.
CWE
CWE-338

Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)