Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistCiscoCVELIST:CVE-2015-6358
HistoryOct 12, 2017 - 3:00 p.m.

CVE-2015-6358

2017-10-1215:00:00
cisco
www.cve.org

5.9 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.5%

JSON

Multiple Cisco embedded devices use hardcoded X.509 certificates and SSH host keys embedded in the firmware, which allows remote attackers to defeat cryptographic protection mechanisms and conduct man-in-the-middle attacks by leveraging knowledge of these certificates and keys from another installation, aka Bug IDs CSCuw46610, CSCuw46620, CSCuw46637, CSCuw46654, CSCuw46665, CSCuw46672, CSCuw46677, CSCuw46682, CSCuw46705, CSCuw46716, CSCuw46979, CSCuw47005, CSCuw47028, CSCuw47040, CSCuw47048, CSCuw47061, CSCuw90860, CSCuw90869, CSCuw90875, CSCuw90881, CSCuw90899, and CSCuw90913.

Related

cisco 1
prion 1
openvas 3
cve 1
nvd 1
nessus 2
cert 1
cisco
cisco
Multiple Cisco Products Confidential Information Decryption Man-in-the-Middle Vulnerability
2015-11-25 21:30:00
prion
prion
Hardcoded credentials
2017-10-12 15:29:00
openvas
openvas
Cisco Small Business RV Series Confidential Information Decryption Man-in-the-Middle Vulnerability
2016-09-15 00:00:00
SSL/TLS: Known Compromised Certificate Detection
2021-11-10 00:00:00
Known SSH Host Key
2016-01-05 00:00:00
cve
cve
CVE-2015-6358
2017-10-12 15:29:00
nvd
nvd
CVE-2015-6358
2017-10-12 15:29:00
nessus
nessus
SSH Known Hard Coded Private Keys
2019-01-08 00:00:00
SSL / TLS Certificate Known Hard Coded Private Keys
2019-01-08 00:00:00
cert
cert
Embedded devices use non-unique X.509 certificates and SSH host keys
2015-11-25 00:00:00

5.9 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

71.5%

JSON
Related for CVELIST:CVE-2015-6358
cisco1prion1openvas3cve1nvd1nessus2cert1