CVE-2014-2362

EUVD-2014-2399
OleumTech WIO DH2 Wireless Gateway and Sensor Wireless I/O Modules rely exclusively on a time value for entropy in key generation, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by predicting the time of project creation.
PRNG
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTPrimary
7.8 UNKNOWN
NETWORK
MEDIUM
AV:N/AC:M/Au:N/C:C/I:P/A:N
Base Score
CVSS 3.x
EPSS Score
Percentile: 77%
Affected Products (NVD)
VendorProductVersion
oleumtechsensor_wireless_i\/o_module
-
oleumtechwio_dh2_wireless_gateway
-
𝑥
= Vulnerable software versions
Common Weakness Enumeration
References
http://support.oleumtech.com/
http://www.securityfocus.com/bid/68797
https://www.cisa.gov/news-events/ics-advisories/icsa-14-202-01a
http://ics-cert.us-cert.gov/advisories/ICSA-14-202-01
http://www.securityfocus.com/bid/68800