[{"data":1,"prerenderedAt":-1},["ShallowReactive",2],{"repo-stars":3,"vuln-CVE-2026-61500":6},{"stargazers_count":4,"fetched_at":5},7,"2026-07-13T20:29:37.599Z",{"id":7,"descriptions":8,"cisa":9,"weaknesses":10,"exploits":20,"aliases":21,"duplicate_of":9,"upstream":22,"downstream":23,"duplicates":24,"related":25,"reserved_at":9,"published_at":26,"modified_at":26,"state":27,"summary":28,"references_raw":35,"kevs":47,"epss":9,"epss_history":48,"metrics":49,"affected":57},"CVE-2026-61500","Rejetto HFS 3.0.0 through 3.2.0 derives its session-cookie signing key from the non-cryptographic Math.random() generator and discloses outputs of the same generator to unauthenticated clients during login. A remote attacker can collect a small number of login responses, reconstruct the generator's state, recover the signing key, and forge a valid administrator session cookie, leading to full administrative access and remote code execution via the server_code configuration feature.",null,[11],{"_key":12,"id":12,"name":13,"description":14,"type":15,"status":16,"abstraction":17,"likelihood_of_exploit":18,"capec":19},"CWE-338","Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)","The product uses a Pseudo-Random Number Generator (PRNG) in a security context, but the PRNG's algorithm is not cryptographically strong.","weakness","Draft","Base","Medium",[],[],[],[],[],[],[],"2026-07-13T17:21:55.747Z","PUBLISHED",{"cisa_kev":29,"cisa_ransomware":29,"cisa_vendor":9,"epss_severity":9,"epss_score":9,"severity":30,"severity_score":31,"severity_version":32,"severity_source":33,"severity_vector":34,"severity_status":27},false,"critical",9.8,"v3.1","cve.org","CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",[36,42],{"url":37,"sources":38,"tags":39},"https://github.com/rejetto/hfs/releases/tag/v3.2.1",[33],[40,41],"Release Notes","Patch",{"url":43,"sources":44,"tags":45},"https://www.vulncheck.com/advisories/rejetto-hfs-session-forgery-via-predictable-signing-key",[33],[46],"Third Party Advisory",[],[],[50],{"source":33,"cvss_v2_0":9,"cvss_v3_0":9,"cvss_v3_1":51,"cvss_v4_0":54},{"baseScore":31,"baseSeverity":52,"vectorString":34,"impactScore":31,"exploitabilityScore":53},"CRITICAL",10,{"baseScore":55,"baseSeverity":52,"vectorString":56,"impactScore":9,"exploitabilityScore":9},9.3,"CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",[58],{"ecosystem":9,"name":59,"vendor":60,"product":59,"cpe_part":61,"purl_type":9,"purl_namespace":9,"purl_name":9,"source":9,"versions":62},"hfs","rejetto","a",[63],{"version":64,"is_range":65,"range_type":33,"version_start":66,"version_start_type":67,"version_end":68,"version_end_type":69,"fixed_in":9},">= 3.0.0, \u003C 3.2.1",true,"3.0.0","including","3.2.1","excluding"]