CVE-2014-2362

OleumTech WIO DH2 Wireless Gateway and Sensor Wireless I/O Modules rely exclusively on a time value for entropy in key generation, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by predicting the time of project creation.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:P/A:N
icscertCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 64%
VendorProductVersion
oleumtechsensor_wireless_i\/o_module
-
oleumtechwio_dh2_wireless_gateway
-
𝑥
= Vulnerable software versions
References
http://ics-cert.us-cert.gov/advisories/ICSA-14-202-01
http://www.securityfocus.com/bid/68800
http://ics-cert.us-cert.gov/advisories/ICSA-14-202-01
http://www.securityfocus.com/bid/68800