PT-2014-7835 · Zeromq · Libzmq

Steamraven

·

Published

2014-10-08

·

Updated

2024-06-15

·

CVE-2014-7203

CVSS v2.0

4.3

Medium

VectorAV:N/AC:M/Au:N/C:N/I:P/A:N
Name of the Vulnerable Software and Affected Versions libzmq versions 4.0.x through 4.0.4
Description The issue allows man-in-the-middle attackers to conduct replay attacks due to the lack of unique nonces.
Recommendations For libzmq versions 4.0.x through 4.0.4, update to version 4.0.5 or later to ensure nonces are unique and prevent replay attacks.

Fix

Found an issue in the description? Have something to add? Feel free to write us 👾
dbugs@ptsecurity.com

Related Identifiers

CVE-2014-7203
OPENSUSE-SU-2024:10038-1
SUSE-FU-2022:0444-1
SUSE-FU-2022:0445-1

Affected Products

Libzmq