CVE-2020-36516Use of a Broken or Risky Cryptographic Algorithm in Kernel

CWE-327Use of a Broken or Risky Cryptographic AlgorithmCWE-290Authentication Bypass by Spoofing11 documents7 sources
Severity
5.9MEDIUMNVD
EPSS
0.0%
top 88.19%
CISA KEV
Not in KEV
Exploit
No known exploits
Affected products
2
Linux KernelNetapp E-series Santricity OS Controller
Timeline
PublishedFeb 26
Latest updateApr 12

Description

An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assignment method with the hash-based IPID assignment policy allows an off-path attacker to inject data into a victim's TCP session or terminate that session.

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:H/A:LExploitability: 1.6 | Impact: 4.2

Affected Packages4 packages

Debianlinux/linux_kernel< 5.10.103-1+3
Ubuntulinux/linux_kernel< 4.4.0-239.273
NVDlinux/linux_kernel5.6.11

🔴Vulnerability Details

5
OSV
linux, linux-kvm, linux-lts-xenial vulnerabilities2023-04-12
OSV
linux-aws vulnerabilities2023-04-06
GHSA
GHSA-w52c-ppqw-2gxp: An issue was discovered in the Linux kernel through 52022-02-27
OSV
CVE-2020-36516: An issue was discovered in the Linux kernel through 52022-02-26
CVEList
CVE-2020-36516: An issue was discovered in the Linux kernel through 52022-02-26

📋Vendor Advisories

5
Ubuntu
Linux kernel (AWS) vulnerabilities2023-04-12
Ubuntu
Linux kernel vulnerabilities2023-04-12
Ubuntu
Linux kernel (AWS) vulnerabilities2023-04-06
Red Hat
kernel: off-path attacker may inject data or terminate victim's TCP session2022-02-28
Debian
CVE-2020-36516: linux - An issue was discovered in the Linux kernel through 5.16.11. The mixed IPID assi...2020
CVE-2020-36516 — Linux Kernel vulnerability | cvebase