CVE-2014-7284
Last modified
CVE-2014-7284 is a vulnerability of currently unknown severity. The net_get_random_once implementation in net/core/utils.c in the Linux kernel 3.13.x and 3.14.x before 3.14.5 on certain Intel processors does not perform the intended slow-path operation to initialize random seeds, which makes it easier for remote attackers to spoof or disrupt IP communication by leveraging the predictability of TCP sequence numbers, TCP and UDP port numbers, and IP ID values.. EPSS estimates a 3.75% chance of exploitation in the next 30 days.
Description
The net_get_random_once implementation in net/core/utils.c in the Linux kernel 3.13.x and 3.14.x before 3.14.5 on certain Intel processors does not perform the intended slow-path operation to initialize random seeds, which makes it easier for remote attackers to spoof or disrupt IP communication by leveraging the predictability of TCP sequence numbers, TCP and UDP port numbers, and IP ID values.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Linux | Linux Kernel | 3.13.1 |
| Linux | Linux Kernel | 3.13.2 |
| Linux | Linux Kernel | 3.13.3 |
| Linux | Linux Kernel | 3.13.4 |
| Linux | Linux Kernel | 3.13.5 |
| Linux | Linux Kernel | 3.13.6 |
| Linux | Linux Kernel | 3.13.7 |
| Linux | Linux Kernel | 3.13.8 |
| Linux | Linux Kernel | 3.13.9 |
| Linux | Linux Kernel | 3.13.10 |
| Linux | Linux Kernel | 3.13.11 |
| Linux | Linux Kernel | 3.14.1 |
| Linux | Linux Kernel | 3.14.2 |
| Linux | Linux Kernel | 3.14.3 |
| Linux | Linux Kernel | 3.14.4 |
References
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2014-7284?
How severe is CVE-2014-7284?
How do I fix CVE-2014-7284?
Are you affected by CVE-2014-7284?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST