CVE-2018-11045

Pivotal Operations Manager, versions 2.1 prior to 2.1.6 and 2.0 prior to 2.0.15 and 1.12 prior to 1.12.22, contains a static Linux Random Number Generator (LRNG) seed file embedded in the appliance image. An attacker with knowledge of the exact version and IaaS of a running OpsManager could get the contents of the corresponding seed from the published image and therefore infer the initial state of the LRNG.

Weakness

The product uses insufficiently random numbers or values in a security context that depends on unpredictable numbers.

Affected Software

Name	Vendor	Start Version	End Version
Operations_manager	Pivotal_software	1.12 (including)	1.12.22 (excluding)
Operations_manager	Pivotal_software	2.0 (excluding)	2.0.15 (excluding)
Operations_manager	Pivotal_software	2.1.0 (including)	2.1.6 (excluding)

Potential Mitigations

Use a well-vetted algorithm that is currently considered to be strong by experts in the field, and select well-tested implementations with adequate length seeds.
In general, if a pseudo-random number generator is not advertised as being cryptographically secure, then it is probably a statistical PRNG and should not be used in security-sensitive contexts.
Pseudo-random number generators can produce predictable numbers if the generator is known and the seed can be guessed. A 256-bit seed is a good starting point for producing a “random enough” number.

References

https://pivotal.io/security/cve-2018-11045

NVD	https://nvd.nist.gov/vuln/detail/CVE-2018-11045
CWE	https://cwe.mitre.org/data/definitions/330.html

Use of Insufficiently Random Values

Weakness

Affected Software

Potential Mitigations

Related Attack Patterns

References