Vulnerability in Objectplanet Opinio
CVE-2023-4472
Objectplanet Opinio version 7.22 and prior uses a cryptographically weak pseudo-random number generator (PRNG) coupled to a predictable seed, which could lead to an unauthenticated account takeover of any user on the application.
EPSS: 0.001 (29.9th percentile) — read the EPSS interpretation.
Affected products
- Objectplanet Opinio — versions 7.22, 7.23