cvedb.io
CVE-2021-3538
CRITICAL · CVSS 9.8
EPSS exploitation probability: 0%
Published 2021-06-02T14:15:09.993 · Last modified 2026-06-17T04:05:18.687

Summary

A flaw was found in github.com/satori/go.uuid in versions from commit 0ef6afb2f6cdd6cdaeee3885a95099c63f18fc8c to d91630c8510268e75203009fe7daf2b8e1d60c45. Due to insecure randomness in the g.rand.Read function the generated UUIDs are predictable for an attacker.

Affected products

satori — uuid

Does this affect you?

Add your gear to cvedb and we'll alert you only when satori ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.