Falhas do tipo CWE-340
46 resultadosCVE-2025-40933HIGHApache::AuthAny::Cookie v0.201 or earlier for Perl generates session ids insecurelyEPSS 0.4%CVE-2026-5080MEDIUMDancer::Session::Abstract versions through 1.3522 for Perl generates session ids insecurelyEPSS 0.4%CVE-2026-5085CRITICALSolstice::Session versions through 1440 for Perl generates session ids insecurelyEPSS 0.3%CVE-2025-40925CRITICALStarch versions 0.14 and earlier generate session ids insecurelyEPSS 0.3%CVE-2025-40923HIGHPlack-Middleware-Session before version 0.35 for Perl generates session ids insecurelyEPSS 0.3%CVE-2024-12034MEDIUMAdvanced Google reCAPTCHA <= 1.25 - Brute Force Protection IP UnblockEPSS 0.3%CVE-2026-5081CRITICALApache::Session::Generate::ModUniqueId versions from 1.54 through 1.94 for Perl session ids are insecureEPSS 0.3%CVE-2026-5084MEDIUMWebDyne::Session versions through 2.075 for Perl generates the session id insecurelyEPSS 0.3%CVE-2025-40919MEDIUMAuthen::DigestMD5 versions 0.01 through 0.04 for Perl generate the cnonce insecurelyEPSS 0.3%CVE-2026-9692MEDIUMMojolicious::Sessions::Storable versions through 0.05 for Perl generate session ids insecurelyEPSS 0.3%CVE-2026-28810MEDIUMPredictable DNS Transaction IDs Enable Cache Poisoning in Built-in ResolverEPSS 0.3%CVE-2025-62294HIGHPredictable Generation of Password Recovery TokenEPSS 0.3%CVE-2021-29480MEDIUMDefault client side session signing key is highly predictableEPSS 0.3%CVE-2024-10603MEDIUMWeaknesses in the generation of TCP/UDP source ports and some other header values in Google's gVisor allowed them to be predicted by an exteEPSS 0.3%CVE-2026-45673MEDIUMNetty: DNS Cache Poisoning due to Predictable PRNG and Default Static Source PortEPSS 0.3%CVE-2025-40924MEDIUMCatalyst::Plugin::Session before version 0.44 for Perl generates session ids insecurelyEPSS 0.3%CVE-2026-8503MEDIUMApache::Session::Generate::SHA256 versions before 1.3.19 for Perl create insecure session idsEPSS 0.2%CVE-2026-4269MEDIUMImproper S3 ownership verification in Bedrock AgentCore Starter ToolkitEPSS 0.2%CVE-2026-42932MEDIUMNaxclow IoT Platform Generation of Predictable Numbers or IdentifiersEPSS 0.2%CVE-2025-58424MEDIUMBIG-IP TMM vulnerabilityEPSS 0.2%