Vulnerability Description
Generation of predictable identifiers issue exists in Cente middleware TCP/IP Network Series. If this vulnerability is exploited, a remote unauthenticated attacker may interfere communications by predicting some packet header IDs of the device.
CVSS Score
MEDIUM
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Nxtech | Cente Ipv6 | <= 1.51 |
| Nxtech | Cente Ipv6 Snmpv2 | <= 2.30 |
| Nxtech | Cente Ipv6 Snmpv3 | <= 2.30 |
| Nxtech | Cente Tcp\/Ipv4 | <= 1.41 |
| Nxtech | Cente Tcp\/Ipv4 Snmpv2 | <= 2.30 |
| Nxtech | Cente Tcp\/Ipv4 Snmpv3 | <= 2.30 |
Related Weaknesses (CWE)
References
- https://jvn.jp/en/vu/JVNVU94016877/Third Party Advisory
- https://www.cente.jp/obstacle/4956/Vendor Advisory
- https://www.cente.jp/obstacle/4963/Vendor Advisory
- https://jvn.jp/en/vu/JVNVU94016877/Third Party Advisory
- https://www.cente.jp/obstacle/4956/Vendor Advisory
- https://www.cente.jp/obstacle/4963/Vendor Advisory
FAQ
What is CVE-2024-28957?
CVE-2024-28957 is a vulnerability with a CVSS score of 5.3 (MEDIUM). Generation of predictable identifiers issue exists in Cente middleware TCP/IP Network Series. If this vulnerability is exploited, a remote unauthenticated attacker may interfere communications by pred...
How severe is CVE-2024-28957?
CVE-2024-28957 has been rated MEDIUM with a CVSS base score of 5.3/10. Review the CVSS metrics above for detailed severity breakdown.
Is there a patch for CVE-2024-28957?
Check the references section above for vendor advisories and patch information. Affected products include: Nxtech Cente Ipv6, Nxtech Cente Ipv6 Snmpv2, Nxtech Cente Ipv6 Snmpv3, Nxtech Cente Tcp\/Ipv4, Nxtech Cente Tcp\/Ipv4 Snmpv2.