What the vulnerability does

01Description

Eclipse TinyDTLS through 0.9-rc1 relies on the rand function in the C library, which makes it easier for remote attackers to compute the master key and then decrypt DTLS traffic.

Key dates

02Disclosure timeline

July 8, 2021 CVE published
August 4, 2024 Record updated