CVE-2014-2362

OleumTech WIO DH2 Wireless Gateway and Sensor Wireless I/O Modules rely exclusively on a time value for entropy in key generation, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by predicting the time of project creation.
PRNG
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:P/A:N
icscertCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 76%
VendorProductVersion
oleumtechsensor_wireless_i\/o_module
-
oleumtechwio_dh2_wireless_gateway
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://support.oleumtech.com/
http://www.securityfocus.com/bid/68797
https://www.cisa.gov/news-events/ics-advisories/icsa-14-202-01a
http://ics-cert.us-cert.gov/advisories/ICSA-14-202-01
http://www.securityfocus.com/bid/68800