VDB
CVE-2000-0445
CVE-2000-0445
PUBLISHED
CVSS 2.0999999046325684 LOW
The pgpk command in PGP 5.x on Unix systems uses an insufficiently random data source for non-interactive key pair generation, which may produce predictable keys.
EPSS 0.26% · 49.9th percentile
Risk Scores
CVSS 2.0
2.0999999046325684
EPSS Score
0.26%
49.9th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| pgp | pgp | 5.0_linux, 5.0i, 6.5_linux |
| n/a | n/a | n/a |
Exploit Intelligence
- 1355 (circl)
- CA-2000-09 (circl)
- 20000523 Key Generation Security Flaw in PGP 5.0 (circl)
- 1251 (circl)
Timeline
- May 24, 2000 CVE Published
- Feb 4, 2022 EPSS Score
- Mar 29, 2022 EPSS Score
- May 20, 2022 EPSS Score
- Jul 12, 2022 EPSS Score
- Sep 4, 2022 EPSS Score
- Oct 27, 2022 EPSS Score
- Dec 18, 2022 EPSS Score
- Feb 9, 2023 EPSS Score
- Mar 7, 2023 EPSS Score
- Apr 3, 2023 EPSS Score
- May 26, 2023 EPSS Score
References
- 1355 vdb
- CA-2000-09 third-party-advisory
- 20000523 Key Generation Security Flaw in PGP 5.0 mailing-list
- 1251 vdb
- https://nvd.nist.gov/vuln/detail/CVE-2000-0445 advisory