Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
An issue was discovered in Ethernut Nut/OS 5.1. The code that generates Initial Sequence Numbers (ISNs) for TCP connections derives the ISN from an insufficiently random source. As a result, an attacker may be able to determine the ISN of current and future TCP connections and either hijack existing ones or spoof future ones. While the ISN generator seems to adhere to RFC 793 (where a global 32-bit counter is incremented roughly every 4 microseconds), proper ISN generation should aim to follow at least the specifications outlined in RFC 6528.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
Multiple Embedded TCP/IP 安全特征问题漏洞
Vulnerability Description
Multiple Embedded TCP/IP是一种高效的嵌入式堆栈,使用可验证的流程开发并严格符合 MISRA 编码标准。 Multiple Embedded TCP/IP 存在安全特征问题漏洞,攻击者可以利用此漏洞来欺骗或破坏TCP连接。
CVSS Information
N/A
Vulnerability Type
N/A