CVE-2015-6358
Last modified
CVE-2015-6358 is a vulnerability of currently unknown severity. Multiple Cisco embedded devices use hardcoded X.509 certificates and SSH host keys embedded in the firmware, which allows remote attackers to defeat cryptographic protection mechanisms and conduct man-in-the-middle attacks by leveraging knowledge of these certificates and keys from another installation, aka Bug IDs CSCuw46610, CSCuw46620, CSCuw46637, CSCuw46654, CSCuw46665, CSCuw46672, CSCuw46677, CSCuw46682, CSCuw46705, CSCuw46716, CSCuw46979, CSCuw47005, CSCuw47028, CSCuw47040, CSCuw47048, CSCuw47061, CSCuw90860, CSCuw90869, CSCuw90875, CSCuw90881, CSCuw90899, and CSCuw90913.. EPSS estimates a 1.31% chance of exploitation in the next 30 days.
Description
Multiple Cisco embedded devices use hardcoded X.509 certificates and SSH host keys embedded in the firmware, which allows remote attackers to defeat cryptographic protection mechanisms and conduct man-in-the-middle attacks by leveraging knowledge of these certificates and keys from another installation, aka Bug IDs CSCuw46610, CSCuw46620, CSCuw46637, CSCuw46654, CSCuw46665, CSCuw46672, CSCuw46677, CSCuw46682, CSCuw46705, CSCuw46716, CSCuw46979, CSCuw47005, CSCuw47028, CSCuw47040, CSCuw47048, CSCuw47061, CSCuw90860, CSCuw90869, CSCuw90875, CSCuw90881, CSCuw90899, and CSCuw90913.
Metrics
Weakness Enumeration
Affected Software
| Vendor | Product | Versions |
|---|---|---|
| Cisco | Rv320 Firmware | <= 1.3.1.10 |
| Cisco | Rv325 Firmware | <= 1.3.1.10 |
| Cisco | Rvs4000 Firmware | <= 2.0.3.4 |
| Cisco | Wrv210 Firmware | <= 2.0.1.5 |
| Cisco | Wap4410n Firmware | <= 2.0.7.8 |
| Cisco | Wrv200 Firmware | 1.0.39 |
| Cisco | Wrvs4400n Firmware | <= 2.0.2.2 |
| Cisco | Wap200 Firmware | <= 2.0.6.0 |
| Cisco | Wvc2300 Firmware | <= 1.1.2.6 |
| Cisco | Pvc2300 Firmware | <= 1.1.2.6 |
| Cisco | Srw224p Firmware | <= 2.0.2.4 |
| Cisco | Wet200 Firmware | <= 2.0.8.0 |
| Cisco | Wap2000 Firmware | <= 2.0.8.0 |
| Cisco | Wap4400n Firmware | <= - |
| Cisco | Rv120w Firmware | <= 1.0.5.9 |
| Cisco | Rv180 Firmware | <= 1.0.5.4 |
| Cisco | Rv180w Firmware | <= 1.0.5.4 |
| Cisco | Rv315w Firmware | <= 1.01.03 |
| Cisco | Srp520 Firmware | <= 1.01.29 |
| Cisco | Srp520-U Firmware | <= 1.2.6 |
| Cisco | Wrp500 Firmware | <= 1.0.1.002 |
| Cisco | Spa400 Firmware | <= 1.1.2.2 |
| Cisco | Rtp300 Firmware | <= 3.1.24 |
| Cisco | Rv220w Firmware | <= 1.0.4.17 |
References
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151125-ciIssue Tracking, Patch, Vendor Advisory
- http://www.kb.cert.org/vuls/id/566724Third Party Advisory, US Government Resource
- http://www.securityfocus.com/bid/78047Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1034255Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1034256Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1034257Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1034258Third Party Advisory, VDB Entry
- http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151125-ciIssue Tracking, Patch, Vendor Advisory
- http://www.kb.cert.org/vuls/id/566724Third Party Advisory, US Government Resource
- http://www.securityfocus.com/bid/78047Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1034255Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1034256Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1034257Third Party Advisory, VDB Entry
- http://www.securitytracker.com/id/1034258Third Party Advisory, VDB Entry
Timeline
- Published
- Last Modified
- Status
- Modified
Frequently Asked Questions
What is CVE-2015-6358?
How severe is CVE-2015-6358?
How do I fix CVE-2015-6358?
Are you affected by CVE-2015-6358?
Run a free Strix scan to check your systems for this vulnerability.
Scan your code nowSource: NVD / NIST