Eclipse TinyDTLS through 0.9-rc1 relies on the rand function in the C library, which makes it easier for remote attackers to compute the master key and then decrypt DTLS traffic.
[
{
"product": "Eclipse TinyDTLS",
"vendor": "The Eclipse Foundation",
"versions": [
{
"lessThanOrEqual": "0.9-rc1",
"status": "affected",
"version": "unspecified",
"versionType": "custom"
}
]
}
]