CVE-2022-41210

Summary

SAP Customer Data Cloud (Gigya mobile app for Android) - version 7.4, uses insecure random number generator program which makes it easy for the attacker to predict future random numbers. This can lead to information disclosure and modification of certain user settings.

Affected Software

VendorProductVersion RangeStatus
SAP SESAP Customer Data Cloud (Gigya)7.4affected

Weaknesses

  • CWE-338: CWE-338

ADP Enrichment

CVE Program Container

Additional References

CISA ADP Vulnrichment

  • SSVC:
  • Exploitation: none
    • Automatable: no
    • Technical Impact: partial

References