Lucene search
CiscoCVELIST:CVE-2015-4217HistoryJun 26, 2015 - 10:00 a.m.
CVE-2015-4217
2015-06-2610:00:00
cisco
www.cve.org
The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices before 2015-06-25 uses the same default SSH host keys across different customers’ installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of a private key from another installation, aka Bug IDs CSCus29681, CSCuu95676, and CSCuu96601.
Related
cisco
cisco
Cisco Virtual WSA, ESA, and SMA Default SSH Host Keys Vulnerability
2015-06-25 16:04:47
Multiple Default SSH Keys Vulnerabilities in Cisco Virtual WSA, ESA, and SMA
2015-06-25 16:00:00
nvd
nvd
CVE-2015-4217
2015-06-26 10:59:04
openvas
openvas
Multiple Cisco Products Default SSH Host Keys Security Bypass Vulnerability
2015-08-14 00:00:00
nessus
nessus
Cisco Ironport Security Appliance Default Host Key Vulnerability
2015-07-02 00:00:00
prion
prion
Design/Logic Flaw
2015-06-26 10:59:00
cve
cve
CVE-2015-4217
2015-06-26 10:59:04
securityvulns
securityvulns
Cisco Virtual WSA / ESA / SMA default keys
2015-06-29 00:00:00