The vulnerability of the microprogrammed software in Siemens SICAM CP-8031 and CP-8050 control modules allows a hacker to gain full control over the device.

The vulnerability of the microprogrammed software in Siemens SICAM CP-8031 and CP-8050 control modules is related to the presence of a rigidly programmed “authorizedkeys” identifier in the SSH configuration file. Exploiting this vulnerability allows a malicious actor to gain full control over the...

CVE-2023-45226

The BIG-IP SPK TMM Traffic Management Module f5-debug-sidecar and f5-debug-sshd containers contains hardcoded credentials that may allow an attacker with the ability to intercept traffic to impersonate the SPK Secure Shell SSH server on those containers. This is only exposed when ssh debug is...

CVE-2023-36380

A vulnerability has been identified in CP-8031 MASTER MODULE All versions CPCI85 V05.11 only with activated debug support, CP-8050 MASTER MODULE All versions CPCI85 V05.11 only with activated debug support. The affected devices contain a hard-coded ID in the SSH authorizedkeys configuration file...

Siemens CP-8031 信任管理问题漏洞

The SICAM A8000 RTU Remote Terminal Unit series is a modular family of devices for remote control and automation applications in all areas of energy supply. A hard-coded credentials vulnerability exists in the CPCI85 firmware of the Siemens SICAM A8000 device, which can be exploited by an attacke...

F5 BIG-IP 信任管理问题漏洞

F5 BIG-IP is an application delivery platform from F5 that integrates network traffic orchestration, load balancing, intelligent DNS, and remote access policy management. A hard-coded credential vulnerability exists in F5 BIG-IP Next SPK, which can be exploited by an attacker with the ability to...

PT-2023-8552 · F5 · Big-Ip

Name of the Vulnerable Software and Affected Versions: BIG-IP versions prior to the fixed version Description: The BIG-IP SPK TMM contains hardcoded credentials in the f5-debug-sidecar and f5-debug-sshd containers. This may allow an attacker to impersonate the SPK Secure Shell SSH server on those...

Improper Privilege Management

Overview bolt is a library enabling the execution of commands remotely over SSH and WinRM Affected versions of this package are vulnerable to Improper Privilege Management. An attacker can escalate their privileges by exploiting this vulnerability. Remediation Upgrade bolt to version 3.27.4 or...

The vulnerability of the check_by_ssh.c component in the Nagios-plugins monitoring system allows a hacker to execute arbitrary commands.

The vulnerability of the checkbyssh.c component of the Nagios-plugins monitoring system relates to the lack of measures taken to neutralize special elements used in operating systems’ command lines. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands remotely by...

The vulnerability of the SSH service in the Cisco Catalyst SD-WAN Manager centralized network management system allows a attacker to cause a service failure.

The vulnerability of the SSH service in the Cisco Catalyst SD-WAN Manager centralized network management system is related to an uncontrolled resource consumption. Exploiting this vulnerability could allow a malicious actor to cause service interruptions...

PT-2023-7325 · Wireshark +4 · Wireshark +4

Name of the Vulnerable Software and Affected Versions: Wireshark versions 4.0.0 through 4.0.10 Description: The issue is related to a crash in the SSH dissector of Wireshark, allowing for denial of service via packet injection or crafted capture file. This can be exploited by a remote attacker,...

CVE-2023-20262

A vulnerability in the SSH service of Cisco Catalyst SD-WAN Manager could allow an unauthenticated, remote attacker to cause a process crash, resulting in a DoS condition for SSH access only. This vulnerability does not prevent the system from continuing to function, and web UI access is not...

Cisco Catalyst SD-WAN Manager Security Vulnerability

Cisco Catalyst is a family of switches from Cisco USA. A security vulnerability exists in Cisco Catalyst SD-WAN Manager, which stems from a vulnerability in the SSH service, where an unauthenticated, remote attacker could cause the process to crash, resulting in a DoS condition for SSH access onl...

PT-2023-6507 · Warpgate · Warpgate

Name of the Vulnerable Software and Affected Versions: Warpgate versions prior to 0.8.1 Description: The issue is related to errors in cryptographic signature verification, allowing a remote attacker to bypass the authentication process under certain conditions. Specifically, the SSH key...

Duplicate Advisory: EVE's Debug Functions Unlockable Without Triggering Measured Boot

Duplicate Advisory This advisory has been withdrawn because it is a duplicate of GHSA-4c4v-42hc-72p6. This link is maintained to preserve external references. Original Description On boot, the Pillar eve container checks for the existence and content of “/config/GlobalConfig/global.json”. If the...

CVE-2023-43631

On boot, the Pillar eve container checks for the existence and content of “/config/authorizedkeys”. If the file is present, and contains a supported public key, the container will go on to open port 22 and enable sshd with the given keys as the authorized keys for root login. An attacker could...

CVE-2023-39982

A vulnerability has been identified in MXsecurity versions prior to v1.0.1. The vulnerability may put the confidentiality and integrity of SSH communications at risk on the affected device. This vulnerability is attributed to a hard-coded SSH host key, which might facilitate man-in-the-middle...

PT-2023-27828 · Usermin · Usermin

Name of the Vulnerable Software and Affected Versions: Usermin version 2.001 Description: A Stored Cross-Site Scripting XSS vulnerability in the SSH configuration tab allows remote attackers to inject arbitrary web script or HTML via options for the host value while editing the host options...

PT-2023-4597 · Vmware · Vmware Aria Operations For Networks

Name of the Vulnerable Software and Affected Versions: VMware Aria Operations for Networks versions 6.0 through 6.10 Description: The issue is related to an authentication bypass vulnerability due to a lack of unique cryptographic key generation. A malicious actor with network access to Aria...

PT-2023-5555 · Nagios +3 · Nagios +3

Name of the Vulnerable Software and Affected Versions: Nagios nagios-plugins version 2.4.5 Description: The issue concerns arbitrary command execution via ProxyCommand, LocalCommand, and PermitLocalCommand with $IFS in the check by ssh component of Nagios nagios-plugins. This allows a remote...

Aruba Networks EdgeConnect SD-WAN Orchestrator 信任管理问题漏洞

Aruba Networks EdgeConnect is an edge connectivity management platform from Aruba Networks, USA. A security vulnerability exists in the Aruba Networks EdgeConnect SD-WAN Orchestrator that stems from the sharing of static SSH host keys across all instances...