CVEDB API

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-16028

react-native-meteor-oauth is a library for Oauth2 login to a Meteor server in React Native. The oauth Random Token is generated using a non-cryptographically strong RNG (Math.random()).

Exploit prediction scoring system (EPSS) score

EPSS Score 0.004

EPSS Ranking 60.4%

CVSS Severity

CVSS v3 Score 5.3

CVSS v2 Score 5.0

References

Products affected by CVE-2017-16028

Randomatic Project » Randomatic » Version: 0.1.0

cpe:2.3:a:randomatic_project:randomatic:0.1.0
Randomatic Project » Randomatic » Version: 0.1.1

cpe:2.3:a:randomatic_project:randomatic:0.1.1
Randomatic Project » Randomatic » Version: 0.1.2

cpe:2.3:a:randomatic_project:randomatic:0.1.2
Randomatic Project » Randomatic » Version: 0.1.3

cpe:2.3:a:randomatic_project:randomatic:0.1.3
Randomatic Project » Randomatic » Version: 0.1.4

cpe:2.3:a:randomatic_project:randomatic:0.1.4
Randomatic Project » Randomatic » Version: 1.0.0

cpe:2.3:a:randomatic_project:randomatic:1.0.0
Randomatic Project » Randomatic » Version: 1.0.1

cpe:2.3:a:randomatic_project:randomatic:1.0.1
Randomatic Project » Randomatic » Version: 1.1.0

cpe:2.3:a:randomatic_project:randomatic:1.1.0
Randomatic Project » Randomatic » Version: 1.1.1

cpe:2.3:a:randomatic_project:randomatic:1.1.1
Randomatic Project » Randomatic » Version: 1.1.2

cpe:2.3:a:randomatic_project:randomatic:1.1.2
Randomatic Project » Randomatic » Version: 1.1.3

cpe:2.3:a:randomatic_project:randomatic:1.1.3
Randomatic Project » Randomatic » Version: 1.1.4

cpe:2.3:a:randomatic_project:randomatic:1.1.4
Randomatic Project » Randomatic » Version: 1.1.5

cpe:2.3:a:randomatic_project:randomatic:1.1.5
Randomatic Project » Randomatic » Version: 1.1.6

cpe:2.3:a:randomatic_project:randomatic:1.1.6
Randomatic Project » Randomatic » Version: 1.1.7

cpe:2.3:a:randomatic_project:randomatic:1.1.7
Randomatic Project » Randomatic » Version: 2.0.0

cpe:2.3:a:randomatic_project:randomatic:2.0.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2017-16028

Products

Pricing

Contact Us