Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-7xus-u1y7-3uap
Vulnerability ID VCID-7xus-u1y7-3uap
Aliases CVE-2011-0766
Summary The random number generator in the Crypto application before 2.0.2.2, and SSH before 2.0.5, as used in the Erlang/OTP ssh library before R14B03, uses predictable seeds based on the current time, which makes it easier for remote attackers to guess DSA host and SSH session keys.
Status Published
Exploitability None
Weighted Severity None
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.03371 https://api.first.org/data/v1/epss?cve=CVE-2011-0766
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2011-0766
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2011-0766
628456 https://bugs.debian.org/cgi-bin/bugreport.cgi?bug=628456
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.87568
EPSS Score 0.03371
Published At May 29, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-05-29T13:41:17.980214+00:00 Debian Oval Importer Import https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0