{"vulnerability": "CVE-2024-38270", "sightings": [{"uuid": "afdbdc3a-14b9-4b46-b484-d90c7fc9a24d", "vulnerability_lookup_origin": "1a89b78e-f703-45f3-bb86-59eb712668bd", "author": "2a075640-a300-48a4-bb44-bc6130783b9b", "vulnerability": "CVE-2024-38270", "type": "seen", "source": "https://t.me/cvedetector/5147", "content": "{\n  \"Source\": \"CVE FEED\",\n  \"Title\": \"CVE-2024-38270 - Zyxel GS1900-10HP Insufficient Entropy Web Authentication Token Vulnerability\", \n  \"Content\": \"CVE ID : CVE-2024-38270 \nPublished : Sept. 10, 2024, 2:15 a.m. | 34\u00a0minutes ago \nDescription : An insufficient entropy vulnerability caused by the improper use of a randomness function with low entropy for web authentication tokens generation exists in the Zyxel GS1900-10HP firmware version V2.80(AAZI.0)C0. This vulnerability could allow a LAN-based attacker a slight chance to gain a valid session token if multiple authenticated sessions are alive. \nSeverity: 5.3 | MEDIUM \nVisit the link for more details, such as CVSS details, affected products, timeline, and more...\",\n  \"Detection Date\": \"10 Sep 2024\",\n  \"Type\": \"Vulnerability\"\n}\n\ud83d\udd39 t.me/cvedetector \ud83d\udd39", "creation_timestamp": "2024-09-10T05:01:41.000000Z"}]}