CVE-2022-43501

CVE-2022-43501

Vendor Zuken Elmic
Product Kasago IPv6/v4 Dual
Weakness CWE-330 · Insufficient randomness
Published February 10, 2023
Last update March 24, 2025

CVSS base score

What the vulnerability does

01Description

KASAGO TCP/IP stack provided by Zuken Elmic generates ISNs(Initial Sequence Number) for TCP connections from an insufficiently random source. An attacker may be able to determine the ISN of the current or future TCP connections and either hijack existing ones or spoof future ones.

Key dates

02Disclosure timeline

February 10, 2023 CVE published
March 24, 2025 Record updated