CVE-2021-45488

CVSS v3.1

7.5

High

Vector

AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions: NetBSD versions prior to 9.3

Description: The issue is related to an information leak in the TCP ISN (ISS) generation algorithm. This leak may potentially allow attackers to gather sensitive information.

Recommendations: For versions prior to 9.3, update to version 9.3 or later to resolve the issue.

Fix

Use of Insufficiently Random Values

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-330

Related Identifiers

CVE-2021-45488

Affected Products

Netbsd

CVE-2021-45488

Weakness Enumeration

Related Identifiers

Affected Products

References · 6