CVE-2021-45488
First published: Sat Dec 25 2021(Updated: )
In NetBSD through 9.2, there is an information leak in the TCP ISN (ISS) generation algorithm.
Credit: cve@mitre.org cve@mitre.org
| Affected Software | Affected Version | How to fix |
|---|---|---|
| NetBSD NetBSD | <=9.2 |
Never miss a vulnerability like this again
Sign up to SecAlerts for real-time vulnerability data matched to your software, aggregated from hundreds of sources.
Reference Links
Frequently Asked Questions
What is the vulnerability ID for this information leak in the TCP ISN generation algorithm in NetBSD?
The vulnerability ID for this information leak is CVE-2021-45488.
What is the severity of CVE-2021-45488?
CVE-2021-45488 has a severity rating of 7.5 (High).
How does the information leak occur in NetBSD through version 9.2?
The information leak occurs in the TCP ISN (ISS) generation algorithm in NetBSD through version 9.2.
Which software versions are affected by CVE-2021-45488?
NetBSD versions up to and including 9.2 are affected by CVE-2021-45488.
Is there a fix available for this vulnerability?
It is recommended to update NetBSD to version 9.3 or apply the relevant security patch provided by the vendor.
- agent/references
- agent/author
- agent/type
- agent/last-modified-date
- agent/first-publish-date
- collector/nvd-api
- agent/software-canonical-lookup-request
- collector/nvd-index
- agent/severity
- agent/weakness
- agent/remedy
- agent/softwarecombine
- agent/tags
- agent/description
- agent/event
- collector/mitre-cve
- source/MITRE
- vendor/netbsd
- canonical/netbsd netbsd
- version/netbsd netbsd/9.2