CVE-2014-2198

Cisco Unified Communications Domain Manager (CDM) in Unified CDM Platform Software before 4.4.2 has a hardcoded SSH private key, which makes it easier for remote attackers to obtain access to the support and root accounts by extracting this key from a binary file found in a different installation of the product, aka Bug ID CSCud41130.

Severity	HIGH
CVSS	10.0
EPSS	-
CWE	CWE-255
KEV
Published	11 years ago
Modified	2 weeks ago

Public Affected Products

Product	Advisory	Evidence
Cisco Unified Communications Domain Manager Platform	cisco-sa-20140702-cucdm	Cisco CSAF · structured affected