CVE-2015-4216

Published Jun 26, 2015

Last updated 8 years ago

CVSS info 5.0

Overview

Description: The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices before 2015-06-25 uses the same default SSH root authorized key across different customers' installations, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of a private key from another installation, aka Bug IDs CSCuu95988, CSCuu95994, and CSCuu96630.
Source: ykramarz@cisco.com
NVD status: Analyzed

Risk scores

CVSS 2.0

Type: Primary
Base score: 5
Impact score: 2.9
Exploitability score: 10
Vector string: AV:N/AC:L/Au:N/C:P/I:N/A:N

Weaknesses

nvd@nist.gov: CWE-200

Hype score: Not currently trending

Configurations

[
  {
    "nodes": [
      {
        "negate": false,
        "cpeMatch": [
          {
            "criteria": "cpe:2.3:a:cisco:content_security_management_virtual_appliance:8.4.0.0150:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A7CC2842-66AE-4738-BF49-F491B4E1EF7A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:content_security_management_virtual_appliance:9.0.0.087:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "FE947E42-6952-49E4-9674-5C8E0900E3BD"
          },
          {
            "criteria": "cpe:2.3:a:cisco:email_security_virtual_appliance:8.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "A560D3EA-57DF-48A9-B7A1-957C226C625B"
          },
          {
            "criteria": "cpe:2.3:a:cisco:email_security_virtual_appliance:8.5.6:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "F44102CA-6BE5-42AD-910B-3A0BA911FB53"
          },
          {
            "criteria": "cpe:2.3:a:cisco:email_security_virtual_appliance:8.5.7:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "7C7E609D-0414-40AD-BD7D-D708C3B36986"
          },
          {
            "criteria": "cpe:2.3:a:cisco:email_security_virtual_appliance:9.0.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C699F035-7418-4344-8FDE-7C180176186D"
          },
          {
            "criteria": "cpe:2.3:a:cisco:web_security_virtual_appliance:7.7.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "ABB49075-4E5C-46F2-8436-0A7BA7161972"
          },
          {
            "criteria": "cpe:2.3:a:cisco:web_security_virtual_appliance:8.0.5:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "048F0725-C1B9-4D21-B7FE-2E81E72CFBD3"
          },
          {
            "criteria": "cpe:2.3:a:cisco:web_security_virtual_appliance:8.5.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "C7837ACC-B42E-4099-BF9F-87523637C91A"
          },
          {
            "criteria": "cpe:2.3:a:cisco:web_security_virtual_appliance:8.5.1:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "715190B6-9EBD-42DB-98B7-3FD410536F97"
          },
          {
            "criteria": "cpe:2.3:a:cisco:web_security_virtual_appliance:8.6.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "E063B3C2-53CE-4732-8482-6A4B8EF0D02E"
          },
          {
            "criteria": "cpe:2.3:a:cisco:web_security_virtual_appliance:8.7.0:*:*:*:*:*:*:*",
            "vulnerable": true,
            "matchCriteriaId": "675388FE-6B3D-4C90-BFB4-B997DDF47AB2"
          }
        ],
        "operator": "OR"
      }
    ]
  }
]

Overview

Risk scores

CVSS 2.0

Weaknesses

Social media

Configurations

References