Lucene search
K

4 matches found

Positive Technologies
Positive Technologies
added 2024/05/28 12:0 a.m.4 views

PT-2024-12231 · Openwrt · Openwrt

Name of the Vulnerable Software and Affected Versions: OpenWrt versions 18.06 through 22.03 and beyond Description: An issue in OpenWrt allows off-path attackers to hijack TCP sessions. This could lead to a denial of service, impersonating the client to the server, and impersonating the server to...

7.3CVSS7.2AI score0.00294EPSS
Exploits0References8
ATTACKERKB
ATTACKERKB
added 2023/10/10 5:15 p.m.3 views

CVE-2020-27213

An issue was discovered in Ethernut Nut/OS 5.1. The code that generates Initial Sequence Numbers ISNs for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and future TCP connections and either hijack existin...

7.5CVSS5.5AI score0.00973EPSS
Exploits1References5
OSV
OSV
added 2023/10/10 5:15 p.m.3 views

CVE-2020-27213

An issue was discovered in Ethernut Nut/OS 5.1. The code that generates Initial Sequence Numbers ISNs for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and future TCP connections and either hijack existin...

7.5CVSS5.8AI score0.00973EPSS
Exploits1References4
Prion
Prion
added 2016/08/06 8:59 p.m.21 views

Design/Logic Flaw

net/ipv4/tcpinput.c in the Linux kernel before 4.7 does not properly determine the rate of challenge ACK segments, which makes it easier for remote attackers to hijack TCP sessions via a blind in-window attack...

5.8CVSS6.7AI score0.15073EPSS
Exploits3References32Affected Software3
Rows per page
Query Builder