6 matches found
EUVD-2022-31488
Malicious code in bioql PyPI...
CVE-2022-26943
The Motorola MTM5000 series firmwares generate TETRA authentication challenges using a PRNG using a tick count register as its sole entropy source. Low boottime entropy and limited re-seeding of the pool renders the authentication challenge vulnerable to two attacks. First, due to the limited...
CVE-2022-24400
A flaw in the TETRA authentication procecure allows a MITM adversary that can predict the MS challenge RAND2 to set session key DCK to zero...
Authentication flaw
The Motorola MTM5000 series firmwares generate TETRA authentication challenges using a PRNG using a tick count register as its sole entropy source. Low boottime entropy and limited re-seeding of the pool renders the authentication challenge vulnerable to two attacks. First, due to the limited...
CVE-2022-26943
CVE-2022-26943 concerns the Motorola MTM5000 series firmware, where TETRA authentication challenges are generated by a PRNG that relies solely on a tick-count-based entropy source. The described weakness is that low boot-time entropy and limited reseeding let an attacker either exhaust the entrop...
CVE-2022-24400
CVE-2022-24400 concerns the Motorola MTM5000 series firmware. The Red/Blue chain shows the issue arises from generating TETRA authentication challenges with a PRNG that uses a tick-count register as its sole entropy source, yielding very low boot-time entropy and limited reseeding. This makes aut...