VYPR
← All advisories
Unrated severityNVD Advisory· Published Sep 28, 2012· Updated Apr 29, 2026

CVE-2012-2681

CVE-2012-2681

Description

Cumin before 0.1.5444, as used in Red Hat Enterprise Messaging, Realtime, and Grid (MRG) 2.0, uses predictable random numbers to generate session keys, which makes it easier for remote attackers to guess the session key.

Affected products

10
  • Trevor Mckay/Cumin9 versions
    cpe:2.3:a:trevor_mckay:cumin:*:*:*:*:*:*:*:*+ 8 more
    • cpe:2.3:a:trevor_mckay:cumin:*:*:*:*:*:*:*:*range: <=0.1.5192-4
    • cpe:2.3:a:trevor_mckay:cumin:0.1.3160-1:*:*:*:*:*:*:*
    • cpe:2.3:a:trevor_mckay:cumin:0.1.4369-1:*:*:*:*:*:*:*
    • cpe:2.3:a:trevor_mckay:cumin:0.1.4410-2:*:*:*:*:*:*:*
    • cpe:2.3:a:trevor_mckay:cumin:0.1.4494-1:*:*:*:*:*:*:*
    • cpe:2.3:a:trevor_mckay:cumin:0.1.4794-1:*:*:*:*:*:*:*
    • cpe:2.3:a:trevor_mckay:cumin:0.1.4916-1:*:*:*:*:*:*:*
    • cpe:2.3:a:trevor_mckay:cumin:0.1.5098-2:*:*:*:*:*:*:*
    • cpe:2.3:a:trevor_mckay:cumin:0.1.5192-1:*:*:*:*:*:*:*
  • Red Hat/Enterprise Mrg
    cpe:2.3:o:redhat:enterprise_mrg:2.0:*:*:*:*:*:*:*

Patches

0

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

6

News mentions

0

No linked articles in our index yet.