CVE-2012-3006

Published: Jun 19, 2012Modified: Apr 29, 2026

7.1

Vector

AV:N/AC:H/Au:S/C:C/I:C/A:C

Exploitability: 3.9 / Impact: 10.0

Source: NVD

Description

The Innominate mGuard Smart HW before HW-101130 and BD before BD-101030, mGuard industrial RS, mGuard delta HW before HW-103060 and BD before BD-211010, mGuard PCI, mGuard blade, and EAGLE mGuard appliances with software before 7.5.0 do not use a sufficient source of entropy for private keys, which makes it easier for man-in-the-middle attackers to spoof (1) HTTPS or (2) SSH servers by predicting a key value.

Affected (1)

Products: Innominate: Mguard Firmware

Innominate

1 product

Mguard Firmware

Configuration A

1 vulnerable · 18 platform

Vulnerable Software	Affected Versions
Innominate Mguard Firmware	Before 7.5.0

Running on/with	Platform Versions
Innominate Eagle Mguard Bd 301010	All versions
Innominate Eagle Mguard Hw 201000	All versions
Innominate Mguard Blade Hw 104020	All versions
Innominate Mguard Blade Hw 104050	All versions
Innominate Mguard Delta Bd 201000	All versions
Innominate Mguard Delta Hw 103050	All versions
Innominate Mguard Industrial Rs Bd 501000	All versions
Innominate Mguard Industrial Rs Bd 501010	All versions
Innominate Mguard Industrial Rs Bd 501020	All versions
Innominate Mguard Industrial Rs Hw 105000	All versions
Innominate Mguard Pci Bd 111010	All versions
Innominate Mguard Pci Bd 111020	All versions
Innominate Mguard Pci Hw 102020	All versions
Innominate Mguard Pci Hw 102050	All versions
Innominate Mguard Smart Bd 101010	All versions
Innominate Mguard Smart Bd 101020	All versions
Innominate Mguard Smart Hw 101020	All versions
Innominate Mguard Smart Hw 101050	All versions