Unrated severityNVD Advisory· Published Nov 6, 2015· Updated May 6, 2026

CVE-2015-7763

Description

rx/rx.c in OpenAFS 1.5.75 through 1.5.78, 1.6.x before 1.6.15, and 1.7.x before 1.7.33 does not properly initialize padding at the end of an Rx acknowledgement (ACK) packet, which allows remote attackers to obtain sensitive information by (1) conducting a replay attack or (2) sniffing the network.

Patches

No patches discovered yet.

Vulnerability mechanics

AI mechanics synthesis has not run for this CVE yet.

References

lists.openafs.org/pipermail/openafs-announce/2015/000493.htmlnvdVendor Advisory
www.openafs.org/dl/openafs/1.6.15/RELNOTES-1.6.15nvdVendor Advisory
www.openafs.org/pages/security/OPENAFS-SA-2015-007.txtnvdVendor Advisory
www.debian.org/security/2015/dsa-3387nvd
www.securitytracker.com/id/1034039nvd

News mentions

No linked articles in our index yet.

cvss	0.000
epss	0.000
exploit	0.000
kev	0.000
patch	0.000
ransomware	0.000