📦

cyclonetcp

Vendor: oryx-embedded

Actively Exploited 0 CISA KEV List

PoC / Exploits 0 Code Available

Total RCEs 0 Remote Access

Total CVEs 2 Total Indexed

Avg. EPSS 0.25% Exploit Prob.

Latest CVE CVE-2020-27631 Oct 10

Security Vulnerability Index

Page 1 / 1

9.8 CVSS

CVE-2020-27631

In Oryx CycloneTCP 1.9.6, TCP ISNs are improperly random.

EPSS: 0.18%

Severity: CRITICAL

Oct 10, 2023

7.5 CVSS

CVE-2021-26788

Oryx Embedded CycloneTCP 1.7.6 to 2.0.0, fixed in 2.0.2, is affected by incorrect input validation, which may cause a denial of service (DoS). To exploit the vulnerability, an attacker needs to have TCP connectivity to the target system. Receiving a maliciously crafted TCP packet from an unauthenticated endpoint is sufficient to trigger the bug.

EPSS: 0.32%

Severity: HIGH

Mar 08, 2021

Displaying 2 of 2 Total Entries

Total 1 Sections