Vulnerability in Ge Hydran_m2

CVE-2014-5409

The 17046 Ethernet card before 94450214LFMT100SEM-L.R3-CL for the GE Digital Energy Hydran M2 does not properly generate random values for TCP Initial Sequence Numbers (ISNs), which makes it easier for remote attackers to spoof packets by…

EPSS: 0.023 (85.0th percentile) — read the EPSS interpretation.

Affected products

Ge Hydran_m2
Ge Hydran M2, Containing The 17046 Ethernet Option — versions 0

Weakness classification (CWE)

CWE-343

References

ics-cert@hq.dhs.gov
ics-cert@hq.dhs.gov (x_refsource_MISC)
ics-cert@hq.dhs.gov
af854a3a-2127-422b-91ae-364da2661108 (Third Party Advisory, US Government Resource)