Boletines de Vulnerabilidades

Multiple Default SSH Keys Vulnerabilities in Cisco Virtual WSA, ESA, and SMA

Información sobre el sistema
   
Software afectado Cisco

Descripción
Cisco Web Security Virtual Appliance (WSAv), Cisco Email Security Virtual Appliance (ESAv), and Cisco Security Management Virtual Appliance (SMAv) are affected by the following vulnerabilities: Cisco Virtual WSA, ESA, and SMA Default Authorized SSH Key Vulnerability Cisco Virtual WSA, ESA, and SMA Default SSH Host Keys VulnerabilityCisco has released free software updates that address these vulnerabilities. There are no workarounds for these vulnerabilities.This advisory is available at the

More info:

http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20150625-ironport?vs_f=Cisco%20Security%20Advisory&vs_cat=Security%20Intelligence&vs_type=RSS&vs_p=Multiple%20Default%20SSH%20Keys%20Vulnerabilities%20in%20Cisco%20Virtual%

Identificadores estándar
Propiedad Valor
CVE CVE-2015-4216 and CVE-2015-4217.

Histórico de versiones
Versión Comentario Fecha
1.0 Advisory issued 2015-06-26

Miembros de

CERT
FIRST
TF-CSIRT
EGC Group
UE
Red Nacional de SOC
Foro Nacional de Ciberseguridad
CSIRT.es
Ministerio de Defensa
CNI
CCN
CCN-CERT