← Retour aux CVEs
CVE-2025-0577
MEDIUM4.8
Description
An insufficient entropy vulnerability was found in glibc. The getrandom and arc4random family of functions may return predictable randomness if these functions are called again after the fork, which happens concurrently with a call to any of these functions.
Details CVE
Score CVSS v3.14.8
SeveriteMEDIUM
Vecteur CVSSCVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:N
Vecteur d'attaqueNETWORK
ComplexiteHIGH
Privileges requisNONE
Interaction utilisateurNONE
Publie2/18/2026
Derniere modification2/19/2026
Sourcenvd
Observations honeypot0
Faiblesses (CWE)
CWE-331
References
https://access.redhat.com/security/cve/CVE-2025-0577(patrick@puiterwijk.org)
https://bugzilla.redhat.com/show_bug.cgi?id=2338871(patrick@puiterwijk.org)
Correlations IOC
Aucune correlation enregistree
This product uses data from the NVD API but is not endorsed or certified by the NVD.