Lucene search
CiscoCVELIST:CVE-2015-4216HistoryJun 26, 2015 - 10:00 a.m.
CVE-2015-4216
2015-06-2610:00:00
cisco
www.cve.org
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices before 2015-06-25 uses the same default SSH root authorized key across different customers’ installations, which makes it easier for remote attackers to bypass authentication by leveraging knowledge of a private key from another installation, aka Bug IDs CSCuu95988, CSCuu95994, and CSCuu96630.
Related
nessus
nessus
Cisco Ironport Security Appliance Authorized Key Vulnerability
2015-07-02 00:00:00
cve
cve
CVE-2015-4216
2015-06-26 10:59:03
prion
prion
Authentication flaw
2015-06-26 10:59:00
nvd
nvd
CVE-2015-4216
2015-06-26 10:59:03
cisco
cisco
Multiple Default SSH Keys Vulnerabilities in Cisco Virtual WSA, ESA, and SMA
2015-06-25 16:00:00
securityvulns
securityvulns
Cisco Virtual WSA / ESA / SMA default keys
2015-06-29 00:00:00