ByteOS Network

NVD Vulnerability Details :

CVE-2015-4217

Deferred

Source-psirt@cisco.com

Published At-26 Jun, 2015 | 10:59

Updated At-12 Apr, 2025 | 10:46

The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices before 2015-06-25 uses the same default SSH host keys across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of a private key from another installation, aka Bug IDs CSCus29681, CSCuu95676, and CSCuu96601.

Date Added	Due Date	Vulnerability Name	Required Action
	N/A

Metrics

Type	Version	Base score	Base severity	Vector
Primary	2.0	4.3	MEDIUM	AV:N/AC:M/Au:N/C:P/I:N/A:N

Type: Primary

Version: 2.0

Base score: 4.3

Base severity: MEDIUM

Vector:

AV:N/AC:M/Au:N/C:P/I:N/A:N

CPE Matches

Cisco Systems, Inc.

>>content_security_management_virtual_appliance>>8.4.0.0150

cpe:2.3:a:cisco:content_security_management_virtual_appliance:8.4.0.0150:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>content_security_management_virtual_appliance>>9.0.0.087

cpe:2.3:a:cisco:content_security_management_virtual_appliance:9.0.0.087:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>email_security_virtual_appliance>>8.0.0

cpe:2.3:a:cisco:email_security_virtual_appliance:8.0.0:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>email_security_virtual_appliance>>8.5.6

cpe:2.3:a:cisco:email_security_virtual_appliance:8.5.6:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>email_security_virtual_appliance>>8.5.7

cpe:2.3:a:cisco:email_security_virtual_appliance:8.5.7:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>email_security_virtual_appliance>>9.0.0

cpe:2.3:a:cisco:email_security_virtual_appliance:9.0.0:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>web_security_virtual_appliance>>7.7.5

cpe:2.3:a:cisco:web_security_virtual_appliance:7.7.5:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>web_security_virtual_appliance>>8.0.5

cpe:2.3:a:cisco:web_security_virtual_appliance:8.0.5:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>web_security_virtual_appliance>>8.5.0

cpe:2.3:a:cisco:web_security_virtual_appliance:8.5.0:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>web_security_virtual_appliance>>8.5.1

cpe:2.3:a:cisco:web_security_virtual_appliance:8.5.1:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>web_security_virtual_appliance>>8.6.0

cpe:2.3:a:cisco:web_security_virtual_appliance:8.6.0:*:*:*:*:*:*:*

Cisco Systems, Inc.

>>web_security_virtual_appliance>>8.7.0

cpe:2.3:a:cisco:web_security_virtual_appliance:8.7.0:*:*:*:*:*:*:*

Weaknesses

CWE ID	Type	Source
CWE-200	Primary	nvd@nist.gov
CWE-310	Primary	nvd@nist.gov

CWE ID: CWE-200

Type: Primary

Source: nvd@nist.gov

CWE ID: CWE-310

Type: Primary

Source: nvd@nist.gov

References

Hyperlink	Source	Resource
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150625-ironport	psirt@cisco.com	Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=39461	psirt@cisco.com	Vendor Advisory
http://www.securityfocus.com/bid/75418	psirt@cisco.com	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1032725	psirt@cisco.com	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1032726	psirt@cisco.com	Third Party Advisory VDB Entry
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150625-ironport	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://tools.cisco.com/security/center/viewAlert.x?alertId=39461	af854a3a-2127-422b-91ae-364da2661108	Vendor Advisory
http://www.securityfocus.com/bid/75418	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1032725	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry
http://www.securitytracker.com/id/1032726	af854a3a-2127-422b-91ae-364da2661108	Third Party Advisory VDB Entry