1. Home
  2. Vulnerabilities
  3. CVE-2020-16166

CVE-2020-16166

CVSS v3.1 3.7 (Low)
37% Progress
CVSS v2.0 4.3 (Medium)
43% Progress
EPSS 0.43 % (75th)
0.43% Progress
Affected Products 16
Advisories 29
Info CVSS EPSS CAPEC Affected Configurations References Security Advisories Packages & Software OVAL Tools, Exploits & PoC Graph Web & Social Timeline

The Linux kernel through 5.7.11 allows remote attackers to make observations that help to obtain sensitive information about the internal state of the network RNG, aka CID-f227e3ec3b5c. This is related to drivers/char/random.c and kernel/time/timer.c.

Weaknesses
CWE-330
Use of Insufficiently Random Values
CVE Status
PUBLISHED
CNA
MITRE
Published Date
2020-07-30 21:15:11
(4 years ago)
Updated Date
2023-11-07 03:18:13
(10 months ago)

Affected Products

Canonical

Debian

Fedoraproject

Linux

Netapp

Opensuse

Oracle

Configuration #1

    CPE23 From Up To
  Linux Kernel 5.7.11 and prior versions cpe:2.3:o:linux:linux_kernel <= 5.7.11

Configuration #2

    CPE23 From Up To
  Opensuse Leap 15.1 cpe:2.3:o:opensuse:leap:15.1
  Opensuse Leap 15.2 cpe:2.3:o:opensuse:leap:15.2

Configuration #3

    CPE23 From Up To
  Fedoraproject Fedora 31 cpe:2.3:o:fedoraproject:fedora:31
  Fedoraproject Fedora 32 cpe:2.3:o:fedoraproject:fedora:32

Configuration #4

    CPE23 From Up To
  Debian Linux 9.0 cpe:2.3:o:debian:debian_linux:9.0

Configuration #5

    CPE23 From Up To
  Canonical Ubuntu Linux 14.04 cpe:2.3:o:canonical:ubuntu_linux:14.04:*:*:*:esm
  Canonical Ubuntu Linux 16.04 cpe:2.3:o:canonical:ubuntu_linux:16.04:*:*:*:lts
  Canonical Ubuntu Linux 18.04 cpe:2.3:o:canonical:ubuntu_linux:18.04:*:*:*:lts
  Canonical Ubuntu Linux 20.04 cpe:2.3:o:canonical:ubuntu_linux:20.04:*:*:*:lts

Configuration #6

    CPE23 From Up To
  Netapp Active Iq Unified Manager for Vmware Vsphere from 9.5 version cpe:2.3:a:netapp:active_iq_unified_manager::*:*:*:*:vmware_vsphere >= 9.5
  Netapp Cloud Volumes Ontap Mediator cpe:2.3:a:netapp:cloud_volumes_ontap_mediator:-
  Netapp E-series Santricity Os Controller from 11.0.0 version and 11.60.3 and prior versions cpe:2.3:a:netapp:e-series_santricity_os_controller >= 11.0.0 <= 11.60.3
  Netapp Hci Bootstrap Os cpe:2.3:a:netapp:hci_bootstrap_os:-
  Netapp Hci Management Node cpe:2.3:a:netapp:hci_management_node:-
  Netapp Solidfire cpe:2.3:a:netapp:solidfire:-
  Netapp Steelstore Cloud Integrated Storage cpe:2.3:a:netapp:steelstore_cloud_integrated_storage:-
  Netapp Storagegrid 9.0.4 and prior versions cpe:2.3:a:netapp:storagegrid <= 9.0.4

Configuration #7

AND
    CPE23 From Up To
OR  
  Netapp H410c Firmware cpe:2.3:o:netapp:h410c_firmware:-
OR  
  Running on/with
  Netapp H410c cpe:2.3:h:netapp:h410c:-

Configuration #8

    CPE23 From Up To
  Oracle Sd-wan Edge 8.2 cpe:2.3:a:oracle:sd-wan_edge:8.2