- Description
- Unspecified vulnerability in the SSH server in (1) Cisco Service Control Engine (SCE) before 3.1.6, and (2) Icon Labs Iconfidant SSH before 2.3.8, allows remote attackers to cause a denial of service (device instability) via "SSH credentials that attempt to change the authentication method," aka Bug ID CSCsm14239.
- Source
- ykramarz@cisco.com
- NVD status
- Modified
CVSS 2.0
- Type
- Primary
- Base score
- 7.8
- Impact score
- 6.9
- Exploitability score
- 10
- Vector string
- AV:N/AC:L/Au:N/C:N/I:N/A:C
- nvd@nist.gov
- CWE-255
- Hype score
- Not currently trending
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:service_control_engine:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "8F2AA0D7-4859-4DDB-87C9-AC92EEE85BCD",
"versionEndIncluding": "3.1.5"
},
{
"criteria": "cpe:2.3:a:icon-labs:iconfidant_ssh:*:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "1863D250-A98A-48FB-AFD1-8A73FC6F18CF",
"versionEndIncluding": "2.3.7"
}
],
"operator": "OR"
}
]
}
]