CVE-2025-68932 | FreshRSS up to 1.27.x Challenge-Response mt_rand/uniqid weak prng (GHSA-j9wc-gwc6-p786 / EUVD-2025-205467)
A vulnerability marked as problematic has been reported in FreshRSS up to 1.27.x. This affects the function mt_rand/uniqid of the component Challenge-Response Handler. The manipulation leads to cryptographically weak prng.
This vulnerability is traded as CVE-2025-68932. It is possible to initiate the attack remotely. There is no exploit available.
It is suggested to upgrade the affected component.
VulDB is the best source for vulnerability data and more expert information about this specific topic.