CVE-2020-27636
First published: Tue Oct 10 2023(Updated: )
In Microchip MPLAB Net 3.6.1, TCP ISNs are improperly random.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| Microchip Mplab Network Creator | =3.6.1 | |
| Multiple Nut/Net, Version 5.1 and prior | ||
| Multiple CycloneTCP, Version 1.9.6 and prior | ||
| Multiple NDKTCPIP, Version 2.25 and prior | ||
| Multiple FNET, Version 4.6.3 | ||
| Multiple uIP-Contiki-OS (end-of-life [EOL]), Version 3.0 and prior | ||
| Multiple uC/TCP-IP (EOL), Version 3.6.0 and prior | ||
| Multiple uIP-Contiki-NG, Version 4.5 and prior | ||
| Multiple uIP (EOL), Version 1.0 and prior | ||
| Multiple picoTCP-NG, Version 1.7.0 and prior | ||
| Multiple picoTCP (EOL), Version 1.7.0 and prior | ||
| Multiple MPLAB Net, Version 3.6.1 and prior | ||
| Multiple Nucleus NET, All versions prior to Version 5.2 | ||
| Multiple Nucleus ReadyStart for ARM, MIPS, and PPC, All versions prior to Version 2012.12 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this vulnerability?
The vulnerability ID for this vulnerability is CVE-2020-27636.
What is the title of the vulnerability?
The title of the vulnerability is 'In Microchip MPLAB Net 3.6.1 TCP ISNs are improperly random.'
What is the severity rating of CVE-2020-27636?
CVE-2020-27636 has a severity rating of 9.1 (critical).
What software is affected by CVE-2020-27636?
Microchip MPLAB Net 3.6.1 is affected by CVE-2020-27636.
How can I fix the vulnerability in Microchip MPLAB Net 3.6.1?
Please refer to the references provided for information on fixing the vulnerability in Microchip MPLAB Net 3.6.1.
- collector/nvd-api
- collector/nvd-index
- agent/author
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- agent/severity
- agent/weakness
- agent/references
- agent/description
- collector/ics-cert-advisory
- source/ICS
- agent/software-canonical-lookup
- agent/software-canonical-lookup-request
- agent/softwarecombine
- agent/tags
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/microchip
- canonical/microchip mplab network creator
- version/microchip mplab network creator/3.6.1
- vendor/multiple
- canonical/multiple nut/net, version 5.1 and prior
- canonical/multiple cyclonetcp, version 1.9.6 and prior
- canonical/multiple ndktcpip, version 2.25 and prior
- canonical/multiple fnet, version 4.6.3
- canonical/multiple uip-contiki-os (end-of-life [eol]), version 3.0 and prior
- canonical/multiple uc/tcp-ip (eol), version 3.6.0 and prior
- canonical/multiple uip-contiki-ng, version 4.5 and prior
- canonical/multiple uip (eol), version 1.0 and prior
- canonical/multiple picotcp-ng, version 1.7.0 and prior
- canonical/multiple picotcp (eol), version 1.7.0 and prior
- canonical/multiple mplab net, version 3.6.1 and prior
- canonical/multiple nucleus net, all versions prior to version 5.2
- canonical/multiple nucleus readystart for arm, mips, and ppc, all versions prior to version 2012.12