Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ciscoCiscoCISCO-SA-CPS-STATIC-KEY-JMS92HNV
HistoryNov 03, 2021 - 4:00 p.m.

Cisco Policy Suite Static SSH Keys Vulnerability

2021-11-0316:00:00
tools.cisco.com
19

0.006 Low

EPSS

Percentile

79.1%

JSON

A vulnerability in the key-based SSH authentication mechanism of Cisco Policy Suite could allow an unauthenticated, remote attacker to log in to an affected system as the root user.

This vulnerability is due to a weakness in the SSH subsystem of an affected system. An attacker could exploit this vulnerability by connecting to an affected device through SSH. A successful exploit could allow the attacker to log in to an affected system as the root user.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cps-static-key-JmS92hNv [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cps-static-key-JmS92hNv”]

Affected configurations

Vulners
Node
ciscocisco_policy_suiteMatchany
OR
ciscocisco_policy_suiteMatchany

Related

prion 1
cve 1
nvd 1
cvelist 1
thn 1
prion
prion
Authentication flaw
2021-11-04 16:15:00
cve
cve
CVE-2021-40119
2021-11-04 16:15:09
nvd
nvd
CVE-2021-40119
2021-11-04 16:15:09
cvelist
cvelist
CVE-2021-40119 Cisco Policy Suite Static SSH Keys Vulnerability
2021-11-03 00:00:00
thn
thn
Hardcoded SSH Key in Cisco Policy Suite Lets Remote Hackers Gain Root Access
2021-11-05 06:15:00

0.006 Low

EPSS

Percentile

79.1%

JSON
Related for CISCO-SA-CPS-STATIC-KEY-JMS92HNV
prion1cve1nvd1cvelist1thn1