CVE-2014-2362

CVE-2014-2362: OleumTech WIO Use of Cryptographically Weak Pseudo-Random Number Generator

Vendor Oleumtech
Product WIO DH2 Wireless Gateway
Weakness CWE-338
Published July 24, 2014
Last update October 6, 2025

CVSS base score

What the vulnerability does

01Description

OleumTech WIO DH2 Wireless Gateway and Sensor Wireless I/O Modules rely exclusively on a time value for entropy in key generation, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by predicting the time of project creation.

Key dates

02Disclosure timeline

July 24, 2014 CVE published
October 6, 2025 Record updated

Related vulnerabilities

04Related CVE