Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistMitreCVELIST:CVE-2018-16158
HistoryOct 03, 2022 - 4:22 p.m.

CVE-2018-16158

2022-10-0316:22:13
mitre
www.cve.org
1
eaton power xpert meter
ssh private key
vulnerability
remote attackers

9.6 High

AI Score

Confidence

High

0.02 Low

EPSS

Percentile

88.8%

JSON

Eaton Power Xpert Meter 4000, 6000, and 8000 devices before 13.4.0.10 have a single SSH private key across different customers’ installations and do not properly restrict access to this key, which makes it easier for remote attackers to perform SSH logins (to uid 0) via the PubkeyAuthentication option.

Related

cve 1
prion 1
nvd 1
nessus 1
cve
cve
CVE-2018-16158
2022-10-03 16:22:13
prion
prion
Design/Logic Flaw
2018-08-30 05:29:00
nvd
nvd
CVE-2018-16158
2018-08-30 05:29:00
nessus
nessus
Eaton Power Xpert Meter Use of Hard-coded Credentials (CVE-2018-16158)
2023-06-20 00:00:00

9.6 High

AI Score

Confidence

High

0.02 Low

EPSS

Percentile

88.8%

JSON
Related for CVELIST:CVE-2018-16158
cve1prion1nvd1nessus1