CVE-2020-27636
Published Oct 10, 2023
·Updated
In Microchip MPLAB Net 3.6.1, TCP ISNs are improperly random.
Affected Software
14 affected components
Microchip Mplab Network Creator=3.6.1
Multiple Nut/Net, Version 5.1 and prior
Multiple CycloneTCP, Version 1.9.6 and prior
Multiple NDKTCPIP, Version 2.25 and prior
Multiple FNET, Version 4.6.3
Multiple uIP-Contiki-OS (end-of-life [EOL]), Version 3.0 and prior
Multiple uC/TCP-IP (EOL), Version 3.6.0 and prior
Multiple uIP-Contiki-NG, Version 4.5 and prior
Multiple uIP (EOL), Version 1.0 and prior
Multiple picoTCP-NG, Version 1.7.0 and prior
Multiple picoTCP (EOL), Version 1.7.0 and prior
Multiple MPLAB Net, Version 3.6.1 and prior
Multiple Nucleus NET, All versions prior to Version 5.2
Multiple Nucleus ReadyStart for ARM, MIPS, and PPC, All versions prior to Version 2012.12
Event History
Oct 10, 2023
CVE Published
via MITRE·12:00 AM
Data Sourced
via MITRE·12:00 AM
Description
Frequently Asked Questions
1
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2020-27636.
2
What is the title of the vulnerability?
The title of the vulnerability is 'In Microchip MPLAB Net 3.6.1 TCP ISNs are improperly random.'
3
What is the severity rating of CVE-2020-27636?
CVE-2020-27636 has a severity rating of 9.1 (critical).
4
What software is affected by CVE-2020-27636?
Microchip MPLAB Net 3.6.1 is affected by CVE-2020-27636.
5
How can I fix the vulnerability in Microchip MPLAB Net 3.6.1?
Please refer to the references provided for information on fixing the vulnerability in Microchip MPLAB Net 3.6.1.