CVE-2015-4217
Published Jun 26, 2015
Last updated 8 years ago
Overview
- Description
- The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices before 2015-06-25 uses the same default SSH host keys across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of a private key from another installation, aka Bug IDs CSCus29681, CSCuu95676, and CSCuu96601.
- Source
- ykramarz@cisco.com
- NVD status
- Analyzed
Social media
- Hype score
- Not currently trending
Risk scores
CVSS 2.0
- Type
- Primary
- Base score
- 4.3
- Impact score
- 2.9
- Exploitability score
- 8.6
- Vector string
- AV:N/AC:M/Au:N/C:P/I:N/A:N
Weaknesses
- nvd@nist.gov
- CWE-200
Configurations
[
{
"nodes": [
{
"negate": false,
"cpeMatch": [
{
"criteria": "cpe:2.3:a:cisco:content_security_management_virtual_appliance:8.4.0.0150:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A7CC2842-66AE-4738-BF49-F491B4E1EF7A"
},
{
"criteria": "cpe:2.3:a:cisco:content_security_management_virtual_appliance:9.0.0.087:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "FE947E42-6952-49E4-9674-5C8E0900E3BD"
},
{
"criteria": "cpe:2.3:a:cisco:email_security_virtual_appliance:8.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "A560D3EA-57DF-48A9-B7A1-957C226C625B"
},
{
"criteria": "cpe:2.3:a:cisco:email_security_virtual_appliance:8.5.6:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "F44102CA-6BE5-42AD-910B-3A0BA911FB53"
},
{
"criteria": "cpe:2.3:a:cisco:email_security_virtual_appliance:8.5.7:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "7C7E609D-0414-40AD-BD7D-D708C3B36986"
},
{
"criteria": "cpe:2.3:a:cisco:email_security_virtual_appliance:9.0.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C699F035-7418-4344-8FDE-7C180176186D"
},
{
"criteria": "cpe:2.3:a:cisco:web_security_virtual_appliance:7.7.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "ABB49075-4E5C-46F2-8436-0A7BA7161972"
},
{
"criteria": "cpe:2.3:a:cisco:web_security_virtual_appliance:8.0.5:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "048F0725-C1B9-4D21-B7FE-2E81E72CFBD3"
},
{
"criteria": "cpe:2.3:a:cisco:web_security_virtual_appliance:8.5.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "C7837ACC-B42E-4099-BF9F-87523637C91A"
},
{
"criteria": "cpe:2.3:a:cisco:web_security_virtual_appliance:8.5.1:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "715190B6-9EBD-42DB-98B7-3FD410536F97"
},
{
"criteria": "cpe:2.3:a:cisco:web_security_virtual_appliance:8.6.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "E063B3C2-53CE-4732-8482-6A4B8EF0D02E"
},
{
"criteria": "cpe:2.3:a:cisco:web_security_virtual_appliance:8.7.0:*:*:*:*:*:*:*",
"vulnerable": true,
"matchCriteriaId": "675388FE-6B3D-4C90-BFB4-B997DDF47AB2"
}
],
"operator": "OR"
}
]
}
]