A flaw in ICMP packets in the Linux kernel may allow an attacker to quickly scan open UDP ports. This flaw allows an off-path remote attacker to effectively bypass source port UDP randomization. Software that relies on UDP source port randomization are indirectly affected as well on the Linux Based Products (RUGGEDCOM RM1224: All versions between v5.0 and v6.4, SCALANCE M-800: All versions between v5.0 and v6.4, SCALANCE S615: All versions between v5.0 and v6.4, SCALANCE SC-600: All versions prior to v2.1.3, SCALANCE W1750D: v8.3.0.1, v8.6.0, and v8.7.0, SIMATIC Cloud Connect 7: All versions, SIMATIC MV500 Family: All versions, SIMATIC NET CP 1243-1 (incl. SIPLUS variants): Versions 3.1.39 and later, SIMATIC NET CP 1243-7 LTE EU: Version

CPENameOperatorVersion
linux_kernellt5.10.0
enterprise_linuxeq7.0
enterprise_linuxeq8.0

Name	Operator	Version
linux_kernel	lt	5.10.0
enterprise_linux	eq	7.0
enterprise_linux	eq	8.0

References

us-cert.cisa.gov/ics/advisories/icsa-21-131-03

cbl_mariner 1

githubexploit 1

ibm 7

ubuntucve 1

nvd 1

f5 2

nessus 64

veracode 1

openwrt 1

ics 2

redhatcve 2

osv 8

cvelist 1

cve 1

debiancve 1

thn 2

redhat 13

almalinux 1

oraclelinux 7

openvas 32

suse 5

ubuntu 6

cloudfoundry 1

centos 1

debian 2

photon 4

mageia 2

cbl_mariner

CVE-2020-25705 affecting package kernel 5.4.91-6

2021-01-29 07:40:05

githubexploit

Exploit for Use of Insufficiently Random Values in Linux Linux Kernel

2020-11-14 08:53:13

ibm

Security Bulletin: UDP source port randomization flaw in IBM DataPower Gateway (CVE-2020-25705)

2022-12-16 18:57:51

Security Bulletin: IBM MQ Appliance is affected by a Kernel vulnerability (CVE-2020-25705)

2022-12-22 17:30:13

Security Bulletin: This Power System update is being released to address CVE 2020-25705

2021-12-07 14:16:38

ubuntucve

CVE-2020-25705

2020-11-17 00:00:00

nvd

CVE-2020-25705

2020-11-17 02:15:13

K09604370 : Linux kernel vulnerability CVE-2020-25705

2020-12-23 00:00:00

BIG-IP TMM vulnerability CVE-2022-26071

2022-05-04 11:52:00

nessus

F5 Networks BIG-IP : Linux kernel vulnerability (K09604370)

2021-03-19 00:00:00

RHEL 8 : kernel-rt (RHSA-2021:0537)

2021-02-16 00:00:00

AlmaLinux 8 : kernel (ALSA-2021:0558)

2022-02-09 00:00:00

veracode

Source Port UDP Randomization Bypass

2020-12-06 02:21:40

openwrt

Security Advisory 2020-12-09-1 - Linux kernel - ICMP rate limiting can be used to facilitate DNS poisoning attack (CVE-2020-25705)

2020-12-09 00:00:00

ics

Siemens Linux-based Products (Update J)

2022-08-18 12:00:00

Siemens SIMATIC

2024-03-14 12:00:00

redhatcve

CVE-2020-25705

2020-12-09 16:45:11

CVE-2021-20322

2021-10-18 11:13:53

osv

Android Vomit Report

2021-04-01 00:00:00

Important: kernel security, bug fix, and enhancement update

2021-02-16 07:36:08

linux, linux-aws, linux-aws-hwe, linux-azure, linux-azure-4.15, linux-gcp, linux-gcp-4.15, linux-gke-4.15, linux-hwe, linux-kvm, linux-oracle, linux-raspi2, linux-snapdragon vulnerabilities

2021-01-06 03:41:27

cvelist

CVE-2020-25705

2020-11-17 01:16:17

cve

CVE-2020-25705

2020-11-17 02:15:13

debiancve

CVE-2020-25705

2020-11-17 02:15:13

thn

SAD DNS — New Flaws Re-Enable DNS Cache Poisoning Attacks

2020-11-13 07:12:00

Microsoft Releases Windows Update (Dec 2020) to Fix 58 Security Flaws

2020-12-09 04:57:00

redhat

(RHSA-2021:0558) Important: kernel security, bug fix, and enhancement update

2021-02-16 07:36:08

(RHSA-2021:0537) Important: kernel-rt security and bug fix update

2021-02-16 07:32:29

(RHSA-2021:2355) Important: kernel security and bug fix update

2021-06-09 08:29:48

almalinux

Important: kernel security, bug fix, and enhancement update

2021-02-16 07:36:08

oraclelinux

kernel security, bug fix, and enhancement update

2021-02-17 00:00:00

Unbreakable Enterprise kernel security update

2021-01-12 00:00:00

Unbreakable Enterprise kernel security update

2021-01-12 00:00:00

openvas

SUSE: Security Advisory (SUSE-SU-2020:3507-1)

2021-06-09 00:00:00

SUSE: Security Advisory (SUSE-SU-2020:3651-1)

2021-04-19 00:00:00

SUSE: Security Advisory (SUSE-SU-2020:3326-1)

2021-04-19 00:00:00

suse

Security update for the Linux Kernel (important)

2020-11-26 00:00:00

Security update for the Linux Kernel (important)

2020-12-15 00:00:00

Security update for the Linux Kernel (important)

2020-12-05 00:00:00

ubuntu

Linux kernel vulnerabilities

2020-12-02 00:00:00

Linux kernel regression

2020-12-13 00:00:00

Linux kernel vulnerabilities

2021-01-06 00:00:00

cloudfoundry

USN-4680-1: Linux kernel vulnerabilities | Cloud Foundry

2021-02-10 00:00:00

centos

bpftool, kernel, perf, python security update

2021-03-18 23:24:41

debian

[SECURITY] [DLA 2494-1] linux security update

2020-12-18 12:14:03

[SECURITY] [DLA 2483-1] linux-4.19 security update

2020-12-10 11:11:34

photon

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2020-1.0-0338

2020-11-17 00:00:00

Critical Photon OS Security Update - PHSA-2020-0338

2020-11-17 00:00:00

Important Photon OS Security Update - PHSA-2020-0160

2020-11-06 00:00:00

mageia

Updated kernel-linus packages fix security vulnerabilities

2021-01-15 15:31:01

Updated kernel packages fix security vulnerabilities

2021-01-15 15:31:01

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

7 High

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.9%

JSON

Related for PRION:CVE-2020-25705