CVE-2015-4217

The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices before 2015-06-25 uses the same default SSH host keys across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of a private key from another installation, aka Bug IDs CSCus29681, CSCuu95676, and CSCuu96601.

Severity	MEDIUM
CVSS	4.3
CWE	CWE-200
KEV
Published	10 years ago
Modified	1 week ago

Related Products

Product	Advisory	Evidence
Cisco Web Security Virtual Appliance	cisco-sa-20150625-ironport	Cisco OpenVuln
Cisco Email Security Virtual Appliance	cisco-sa-20150625-ironport	Cisco OpenVuln
Cisco Content Security Management Virtual Appliance	cisco-sa-20150625-ironport	Cisco OpenVuln
Cisco Web Security Virtual Appliance	Cisco-SA-20150625-CVE-2015-4217	Cisco OpenVuln
Cisco Email Security Virtual Appliance	Cisco-SA-20150625-CVE-2015-4217	Cisco OpenVuln
Cisco Content Security Management Virtual Appliance	Cisco-SA-20150625-CVE-2015-4217	Cisco OpenVuln