Lucene search

CiscoCISCO-SA-20151210-DWVR

HistoryDec 10, 2015 - 10:54 p.m.

Cisco Small Business RV Series and SA500 Series Dual WAN VPN Router Generated Key Pair Information Disclosure Vulnerability

2015-12-1022:54:00

tools.cisco.com

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

EPSS

0.003

Percentile

70.6%

JSON

A vulnerability in the HTTPS session key exchange process of certain Cisco Small Business RV Series Routers and Cisco SA500 Series Security Appliances could allow an unauthenticated, remote attacker to obtain the key pair used in the Transport Layer Security (TLS) session from the affected device.

The vulnerability is due to insufficient sources of entropy used by the random number generator. An attacker could exploit this vulnerability by gathering large amounts of TLS handshake data to predict the random numbers generated for the key pair. An exploit could allow the attacker to decrypt session data between a host and the affected device.

Cisco has released software updates that address this vulnerability. Workarounds that mitigate this vulnerability are not available.

This advisory is available at the following link: https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151210-dwvr[“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151210-dwvr”]

Affected configurations

Vulners

Node

ciscosmall_business_500_series_stackable_managed_switches_firmwareMatchany

ciscosmall_business_rv_series_router_firmwareMatchany

ciscosmall_business_srp541wMatch500_series_security_appliances

ciscosmall_business_rv_series_router_firmwareMatchany

VendorProductVersionCPE
ciscosmall_business_500_series_stackable_managed_switches_firmwareanycpe:2.3:o:cisco:small_business_500_series_stackable_managed_switches_firmware:any:*:*:*:*:*:*:*
ciscosmall_business_rv_series_router_firmwareanycpe:2.3:o:cisco:small_business_rv_series_router_firmware:any:*:*:*:*:*:*:*
ciscosmall_business_srp541w500_series_security_appliancescpe:2.3:h:cisco:small_business_srp541w:500_series_security_appliances:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
cisco	small_business_500_series_stackable_managed_switches_firmware	any	cpe:2.3:o:cisco:small_business_500_series_stackable_managed_switches_firmware:any:::::::*
cisco	small_business_rv_series_router_firmware	any	cpe:2.3:o:cisco:small_business_rv_series_router_firmware:any:::::::*
cisco	small_business_srp541w	500_series_security_appliances	cpe:2.3:h:cisco:small_business_srp541w:500_series_security_appliances:::::::*

References

sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151210-dwvr

CVSS2

4.3

Attack Vector

NETWORK

Attack Complexity

MEDIUM

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:N/C:P/I:N/A:N

EPSS

0.003

Percentile

70.6%

JSON

Related for CISCO-SA-20151210-DWVR