Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
cvelistRedhatCVELIST:CVE-2012-3372
HistoryJul 09, 2012 - 10:00 a.m.

CVE-2012-3372

2012-07-0910:00:00
redhat
www.cve.org
4
cyberoam
utm appliances
ca certificate
private key
ssl
server spoofing

AI Score

6.3

Confidence

Low

EPSS

0.001

Percentile

42.2%

JSON

The default configuration of Cyberoam UTM appliances uses the same Certification Authority certificate and same private key across different customers’ installations, which makes it easier for man-in-the-middle attackers to spoof SSL servers by leveraging the presence of the Cyberoam_SSL_CA certificate in a list of trusted root certification authorities. NOTE: the vendor disputes the significance of this issue because the appliance "does not allow import or export of the foresaid private key.

Related

nessus 1
checkpoint_advisories 1
thn 1
cve 1
securityvulns 1
prion 1
threatpost 1
nvd 1
cert 1
nessus
nessus
SSL Certificate Signed with the Publicly Known Cyberoam Key
2012-08-07 00:00:00
checkpoint_advisories
checkpoint_advisories
Cyberoam Unified Threat Management CA Certificate SSL Spoofing (CVE-2012-3372)
2012-07-23 00:00:00
thn
thn
CVE-2012-3372 : Traffic Interception Vulnerability found in Cyberoam
2012-07-04 18:31:00
cve
cve
CVE-2012-3372
2012-07-09 10:20:44
securityvulns
securityvulns
Cyberoam advisory
2012-07-09 00:00:00
prion
prion
Default configuration
2012-07-09 10:20:00
threatpost
threatpost
Deep Packet Inspection Firm Cyberoam Issues Fix Following Private Key Leak
2012-07-09 20:03:22
nvd
nvd
CVE-2012-3372
2012-07-09 10:20:44
cert
cert
Fortigate UTM appliances share the same default CA certificate
2012-11-02 00:00:00

AI Score

6.3

Confidence

Low

EPSS

0.001

Percentile

42.2%

JSON
Related for CVELIST:CVE-2012-3372
nessus1checkpoint_advisories1thn1cve1securityvulns1prion1threatpost1nvd1cert1