CVE-2020-17470
CVE-2020-17470 is a medium-severity vulnerability in Butok Fnet with a CVSS 3.x base score of 5.3. It is not currently listed as actively exploited by CISA, and its EPSS exploit-prediction score is low. The underlying weakness is classified as CWE-330.
Key facts
- Severity: Medium (CVSS 3.x base score 5.3)
- CVSS v2: 5.0
- EPSS exploit prediction: 2% (79th percentile)
- Actively exploited: Not listed in CISA KEV
- Weakness: CWE-330
- Affected product: Butok Fnet
- Published:
- Last modified:
Description
An issue was discovered in FNET through 4.6.4. The code that initializes the DNS client interface structure does not set sufficiently random transaction IDs (they are always set to 1 in _fnet_dns_poll in fnet_dns.c). This significantly simplifies DNS cache poisoning attacks.
Frequently asked questions
- What is CVE-2020-17470?
- An issue was discovered in FNET through 4.6.4. The code that initializes the DNS client interface structure does not set sufficiently random transaction IDs (they are always set to 1 in _fnet_dns_poll in fnet_dns.c). This significantly simplifies DNS cache poisoning attacks.
- How severe is CVE-2020-17470?
- CVE-2020-17470 has a CVSS 3.x base score of 5.3, rated medium severity. It is exploitable over network with low attack complexity, requires no privileges and no user interaction. Impact on confidentiality is none, integrity low, and availability none.
- Is CVE-2020-17470 being actively exploited?
- It is not currently listed in CISA's KEV catalog. Its EPSS exploit-prediction score is 2% (79th percentile), an estimate of the probability of exploitation in the next 30 days.
- What products are affected by CVE-2020-17470?
- CVE-2020-17470 affects Butok Fnet. See the affected-products list for the exact vulnerable versions.
- How do I fix CVE-2020-17470?
- Review the linked vendor and NVD advisories for patched versions and mitigations, then upgrade or apply the recommended workaround.
- When was CVE-2020-17470 published?
- CVE-2020-17470 was published on 2020-12-11 and last updated on 2026-06-17.
References
- http://fnet.sourceforge.net/manual/fnet_history.html
- https://us-cert.cisa.gov/ics/advisories/icsa-20-343-01
- https://www.kb.cert.org/vuls/id/815128
Affected products (1)
- cpe:2.3:a:butok:fnet:*:*:*:*:*:*:*:*
More vulnerabilities in Butok Fnet
- CVE-2020-27633 — Critical (CVSS 9.1): In FNET 4.6.3, TCP ISNs are improperly random.
- CVE-2020-24383 — Critical (CVSS 9.1): An issue was discovered in FNET through 4.6.4. The code for processing resource records in mDNS queries doesn't check…
- CVE-2020-17467 — Critical (CVSS 9.1): An issue was discovered in FNET through 4.6.4. The code for processing the hostname from an LLMNR request doesn't check…
- CVE-2020-17469 — High (CVSS 7.5): An issue was discovered in FNET through 4.6.4. The code for IPv6 fragment reassembly tries to access a previous…
- CVE-2020-17468 — High (CVSS 7.5): An issue was discovered in FNET through 4.6.4. The code for processing the hop-by-hop header (in the IPv6 extension…
All CVEs affecting Butok Fnet →
Other CWE-330 (Use of Insufficiently Random Values) vulnerabilities
- CVE-2023-22601 — Critical (CVSS 10.0): InHand Networks InRouter 302, prior to version IR302 V3.5.56, and InRouter 615, prior to version…
- CVE-2026-25072 — Critical (CVSS 9.8): XikeStor SKS8310-8X Network Switch firmware versions 1.04.B07 and prior contain a predictable session identifier…
- CVE-2026-27755 — Critical (CVSS 9.8): SODOLA SL902-SWTGW124AS firmware versions through 200.1.20 contain a weak session identifier generation vulnerability…
- CVE-2026-27637 — Critical (CVSS 9.8): FreeScout is a free help desk and shared inbox built with PHP's Laravel framework. Prior to version 1.8.206,…
- CVE-2025-64097 — Critical (CVSS 9.8): NervesHub is a web service that allows users to manage over-the-air (OTA) firmware updates of devices in the field. A…
- CVE-2025-4607 — Critical (CVSS 9.8): The PSW Front-end Login & Registration plugin for WordPress is vulnerable to Privilege Escalation in all versions up…
Browse all CWE-330 (Use of Insufficiently Random Values) vulnerabilities →