Insecure random generation in Netflix Lemur python app

Go back

severity: high
date: April 19, 2023
Affecting: Python app lemur versions less than 1.3.2. It is patched in 1.3.2.
CVE: CVE-2023-30797
CVE type: Use of Insufficiently Random Values
CVSS: 7.5
CVSS V3 Vector: AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N
References: GHSA-5fqv-mpj8-h7gm
fix commit