Lucene search

K
ciscoCiscoCISCO-SA-UVA-STATIC-KEY-6RQTRS4C
HistoryApr 20, 2022 - 4:00 p.m.

Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability

2022-04-2016:00:00
tools.cisco.com
23
cisco umbrella
virtual appliance
ssh
vulnerability
man-in-the-middle
administrator credentials
software update

EPSS

0.002

Percentile

60.0%

A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to impersonate a VA.

This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a man-in-the-middle attack on an SSH connection to the Umbrella VA. A successful exploit could allow the attacker to learn the administrator credentials, change configurations, or reload the VA.

Note: SSH is not enabled by default on the Umbrella VA.

Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.

This advisory is available at the following link:
https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uva-static-key-6RQTRs4c [“https://sec.cloudapps.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-uva-static-key-6RQTRs4c”]

Affected configurations

Vulners
Node
ciscoumbrella_insights_virtual_applianceMatchany
OR
ciscoumbrella_insights_virtual_applianceMatchany
VendorProductVersionCPE
ciscoumbrella_insights_virtual_applianceanycpe:2.3:o:cisco:umbrella_insights_virtual_appliance:any:*:*:*:*:*:*:*

EPSS

0.002

Percentile

60.0%

Related for CISCO-SA-UVA-STATIC-KEY-6RQTRS4C