CVE-2015-4217

Published: Jun 26, 2015Modified: May 6, 2026

4.3

Vector

AV:N/AC:M/Au:N/C:P/I:N/A:N

Exploitability: 8.6 / Impact: 2.9

Source: NVD

Description

The remote-support feature on Cisco Web Security Virtual Appliance (WSAv), Email Security Virtual Appliance (ESAv), and Security Management Virtual Appliance (SMAv) devices before 2015-06-25 uses the same default SSH host keys across different customers' installations, which makes it easier for remote attackers to defeat cryptographic protection mechanisms by leveraging knowledge of a private key from another installation, aka Bug IDs CSCus29681, CSCuu95676, and CSCuu96601.

Affected (12)

Products: Cisco: Content Security Management Virtual Appliance, Email Security Virtual Appliance, Web Security Virtual Appliance

Cisco

3 products

Content Security Management Virtual Appliance

Email Security Virtual Appliance

Web Security Virtual Appliance

Configuration A

12 vulnerable

Vulnerable Software	Affected Versions
Cisco Content Security Management Virtual Appliance	Version 8.4.0.0150
Cisco Content Security Management Virtual Appliance	Version 9.0.0.087
Cisco Email Security Virtual Appliance	Version 8.0.0
Cisco Email Security Virtual Appliance	Version 8.5.6
Cisco Email Security Virtual Appliance	Version 8.5.7
Cisco Email Security Virtual Appliance	Version 9.0.0
Cisco Web Security Virtual Appliance	Version 7.7.5
Cisco Web Security Virtual Appliance	Version 8.0.5
Cisco Web Security Virtual Appliance	Version 8.5.0
Cisco Web Security Virtual Appliance	Version 8.5.1
Cisco Web Security Virtual Appliance	Version 8.6.0
Cisco Web Security Virtual Appliance	Version 8.7.0