Описание
A weak hashing algorithm and small sizes of seeds/secrets in Google's gVisor allowed for a remote attacker to calculate a local IP address and a per-boot identifier that could aid in tracking of a device in certain circumstances.
Ссылки
- Patch
- Patch
- Patch
- ExploitTechnical DescriptionThird Party Advisory
Уязвимые конфигурации
Конфигурация 1Версия до 20231030.0 (исключая)Версия от 20231106.0 (включая) до 20231204.0 (исключая)
Одно из
cpe:2.3:a:google:gvisor:*:*:*:*:*:*:*:*
cpe:2.3:a:google:gvisor:*:*:*:*:*:*:*:*
EPSS
Процентиль: 22%
0.00071
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-328
CWE-326
Связанные уязвимости
CVSS3: 5.3
ubuntu
около 1 года назад
A weak hashing algorithm and small sizes of seeds/secrets in Google's gVisor allowed for a remote attacker to calculate a local IP address and a per-boot identifier that could aid in tracking of a device in certain circumstances.
CVSS3: 5.3
github
около 1 года назад
A weak hashing algorithm and small sizes of seeds/secrets in Google's gVisor allowed for a remote attacker to calculate a local IP address and a per-boot identifier that could aid in tracking of a device in certain circumstances.
EPSS
Процентиль: 22%
0.00071
Низкий
5.3 Medium
CVSS3
Дефекты
CWE-328
CWE-326