CVE-2022-34295

CVE-2022-34295

EPSS 1.5%

totd before 1.5.3 does not properly randomize mesg IDs.

Affected products

Want to know if your infrastructure is exposed to this?

Talk to TrueHacking →

References

https://github.com/fwdillema/totd/commit/afd8a10a6a21f82a70940d1b43cff48143250399 https://github.com/fwdillema/totd/releases/tag/1.5.3 https://www.usenix.org/conference/usenixsecurity22/presentation/jeitner http://www.hit.bme.hu/~lencse/publications/JCST-Apr14-2.pdf