CVE-2021-34430
N/A
N/A
Summary
Eclipse TinyDTLS through 0.9-rc1 relies on the rand function in the C library, which makes it easier for remote attackers to compute the master key and then decrypt DTLS traffic.
Affected Software
| Vendor | Product | Version Range | Status |
|---|---|---|---|
| The Eclipse Foundation | Eclipse TinyDTLS | unspecified <= 0.9-rc1 | affected |
Weaknesses
- CWE-338: CWE-338: Use of Cryptographically Weak Pseudo-Random Number Generator (PRNG)
ADP Enrichment
CVE Program Container
Additional References
References
Feedback
Was this page helpful?
Glad to hear it! Please tell us how we can improve.
Sorry to hear that. Please tell us how we can improve.