2 matches found
CVE-2015-4217
The CVE-2015-4217 issue affects Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv). The root cause is the use of the same default SSH host keys across different customer installations, enabling an unauthenticated ...
CVE-2015-4216
The CVE concerns Cisco WSAv/ESAv/SMAv devices where the remote-support feature uses the same default SSH root authorized key across different customer installations, enabling an attacker with knowledge of a private key from another installation to bypass authentication. Affected products are Cisc...