Описание
ReadyNet WRT300N-DD devices with firmware 1.0.26 use the same source port number for every DNS query, which makes it easier for remote attackers to spoof responses by selecting that number for the destination port.
Ссылки
- Third Party AdvisoryUS Government Resource
- Third Party AdvisoryUS Government Resource
Уязвимые конфигурации
Конфигурация 1
Одновременно
cpe:2.3:o:readynet_solutions:wrt300n-dd_firmware:1.0.26:*:*:*:*:*:*:*
cpe:2.3:h:readynet_solutions:wrt300n-dd:-:*:*:*:*:*:*:*
EPSS
Процентиль: 63%
0.00441
Низкий
5.8 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-20
Связанные уязвимости
CVSS3: 5.8
github
больше 3 лет назад
ReadyNet WRT300N-DD devices with firmware 1.0.26 use the same source port number for every DNS query, which makes it easier for remote attackers to spoof responses by selecting that number for the destination port.
EPSS
Процентиль: 63%
0.00441
Низкий
5.8 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-20