CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Vulnerability Details CVE-2021-4238

Randomly-generated alphanumeric strings contain significantly less entropy than expected. The RandomAlphaNumeric and CryptoRandomAlphaNumeric functions always return strings containing at least one digit from 0 to 9. This significantly reduces the amount of entropy in short strings generated by these functions.

Exploit prediction scoring system (EPSS) score

EPSS Score 0.003

EPSS Ranking 49.4%

CVSS Severity

CVSS v3 Score 9.1

References

https://github.com/Masterminds/goutils/commit/869801f20f9f1e7ecdbdb6422049d8241270d5e1
https://pkg.go.dev/vuln/GO-2022-0411
https://github.com/Masterminds/goutils/commit/869801f20f9f1e7ecdbdb6422049d8241270d5e1
https://pkg.go.dev/vuln/GO-2022-0411

Products affected by CVE-2021-4238

Goutils Project » Goutils » Version: 1.0.0

cpe:2.3:a:goutils_project:goutils:1.0.0
Goutils Project » Goutils » Version: 1.0.1

cpe:2.3:a:goutils_project:goutils:1.0.1
Goutils Project » Goutils » Version: 1.1.0

cpe:2.3:a:goutils_project:goutils:1.1.0

Vulnerabilities

Vulnerable Software

Vulnerability Details CVE-2021-4238

Products

Pricing

Contact Us