CVE-2022-43501
CVE-2022-43501
Vexday Risk Score
28Low
SSVC decision (CISA)
Track
No exploitation signal → monitor
CVSS 9.1EPSS 0.6%KEV nãoPoC —Nuclei —Metasploit —Patch —
Lifecycle
10 Feb 2023Published on NVD
Recommendation: Monitor — no exploitation signal at the moment.
KASAGO TCP/IP stack provided by Zuken Elmic generates ISNs(Initial Sequence Number) for TCP connections from an insufficiently random source. An attacker may be able to determine the ISN of the current or future TCP connections and either hijack existing ones or spoof future ones.
CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
Affected products
ZUKEN Elmic · Kasago IPv4ZUKEN Elmic · Kasago IPv4 LightZUKEN Elmic · Kasago IPv6/v4 DualZUKEN Elmic · Kasago mobile IPv6Want to know if your infrastructure is exposed to this?
Talk to TrueHacking →