CVE-2020-27633

Name of the Vulnerable Software and Affected Versions FNET version 4.6.3

Description The issue is related to the improper randomness of TCP Initial Sequence Numbers (ISNs) in the FNET protocol stack implementation. This could allow a remote attacker to gain unauthorized access to protected information. The problem stems from the use of insufficiently random values.

Recommendations For FNET version 4.6.3, consider implementing additional randomness measures for TCP ISNs to mitigate the risk of exploitation. As a temporary workaround, restrict access to sensitive information until a patch is available. At the moment, there is no information about a newer version that contains a fix for this vulnerability.