cvedb.io
CVE-2015-7762
UNKNOWN · CVSS n/a
EPSS exploitation probability: 0%
Published 2015-11-06T21:59:09.017 · Last modified 2026-06-17T00:33:05.473

Summary

rx/rx.c in OpenAFS before 1.6.15 and 1.7.x before 1.7.33 does not properly initialize the padding of a data structure when constructing an Rx acknowledgement (ACK) packet, which allows remote attackers to obtain sensitive information by (1) conducting a replay attack or (2) sniffing the network.

Affected products

openafs — openafs

Does this affect you?

Add your gear to cvedb and we'll alert you only when openafs ships something exploited.

Check my exposure →

References

This product uses data from the NVD API but is not endorsed or certified by the NVD. Informational only; not professional security advice.