The Expressway component in Cisco TelePresence Video Communication Server (VCS) uses the same default X.509 certificate across different customers' installations, which makes it easier for remote attackers to conduct man-in-the-middle attacks against SSL sessions by leveraging the certificate's trust relationship, aka Bug ID CSCue07471.
Metrics
Affected Vendors & Products
References
History
No history.
MITRE
Status: PUBLISHED
Assigner: cisco
Published: 2014-01-23T02:00:00
Updated: 2024-08-06T09:27:19.531Z
Reserved: 2014-01-02T00:00:00
Link: CVE-2014-0675
Vulnrichment
No data.
NVD
Status : Modified
Published: 2014-01-23T04:41:16.097
Modified: 2024-11-21T02:02:38.380
Link: CVE-2014-0675
Redhat
No data.