Cisco Security Advisory - Cisco Policy Suite Static SSH Keys Vulnerability

Started by Netwörkheäd, November 10, 2021, 06:14:17 PM

Previous topic - Next topic
Print
Go Down Pages1
User actions

Netwörkheäd

November 10, 2021, 06:14:17 PM
Cisco Policy Suite Static SSH Keys Vulnerability

A vulnerability in the key-based SSH authentication mechanism of Cisco Policy Suite could allow an unauthenticated, remote attacker to log in to an affected system as the root user.


This vulnerability is due to a weakness in the SSH subsystem of an affected system. An attacker could exploit this vulnerability by connecting to an affected device through SSH. A successful exploit could allow the attacker to log in to an affected system as the root user.


Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.


This advisory is available at the following link:
https://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-cps-static-key-JmS92hNv



     
         
Security Impact Rating:  Critical
   
   
       
CVE: CVE-2021-40119
Source: Cisco Policy Suite Static SSH Keys Vulnerability
Let's not argue. Let's network!
Print
Go Up Pages1
User actions