Threats Tagged 'cve-2026-41858'
View all threats tagged with 'cve-2026-41858'. Filter and sort to focus on specific types of threats.
Stop chasing alerts. Route them.
Start free, then upgrade once to turn Radar into an automated delivery engine for your security stack.
Custom feeds / Automations: email, Slack, webhooks, SIEM/MISP / API access (baseline limits)
API access activates after upgrading in Console -> Billing.
Check if your credentials are on the dark web
Instant breach scanning across billions of leaked records. Free tier available.
Filter Threats
Narrow down the results by type, severity, or affected countries
Threats Tagged 'cve-2026-41858'
Click on any threat for detailed analysis and mitigation recommendations
CVE-2026-41858: CWE-338: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG) in Cloud Foundry Foundation windows-utilities-releaseCVE-2026-41858 0 CVE-2026-41858 is a vulnerability in the Cloud Foundry Foundation's windows-utilities-release component prior to version 0. 23. 0. It involves the use of a cryptographically weak pseudo-random number generator (PRNG) in the Get-RandomPassword function, which generates the local Administrator password. Because the password is derived from a predictable, clock-seeded PRNG, an attacker who can estimate the VM boot time can reconstruct a small candidate list of possible passwords, effectively defeating the intended hardening control. This vulnerability allows an attacker to recover the Administrator password without needing additional privileges. The issue is fixed in windows-utilities-release version 0. 23. 0 and later. Join the discussion | CVE Database V5 | 06/04/2026, 02:10:34 UTC Added: 06/04/2026, 02:33:35 UTC |
Showing 1 to 1 of 1 result