A vulnerability has been identified in MXsecurity versions prior to v1.0.1. The vulnerability may put the confidentiality and integrity of SSH communications at risk on the affected device. This vulnerability is attributed to a hard-coded SSH host key, which might facilitate man-in-the-middle attacks and enable the decryption of SSH traffic.
Metrics
Affected Vendors & Products
References
History
Mon, 28 Oct 2024 06:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Description | A vulnerability has been identified in MXsecurity versions prior to v1.0.1. The vulnerability may put the confidentiality and integrity of SSH communications at risk on the affected device. This vulnerability is attributed to a hard-coded SSH host key, which might facilitate man-in-the-middle attacks and enable the decryption of SSH traffic. | A vulnerability has been identified in MXsecurity versions prior to v1.0.1. The vulnerability may put the confidentiality and integrity of SSH communications at risk on the affected device. This vulnerability is attributed to a hard-coded SSH host key, which might facilitate man-in-the-middle attacks and enable the decryption of SSH traffic. |
Weaknesses | CWE-321 |
Mon, 30 Sep 2024 21:30:00 +0000
Type | Values Removed | Values Added |
---|---|---|
Metrics |
ssvc
|
MITRE
Status: PUBLISHED
Assigner: Moxa
Published: 2023-09-02T12:31:03.492Z
Updated: 2024-10-28T06:13:21.724Z
Reserved: 2023-08-08T07:09:59.308Z
Link: CVE-2023-39982
Vulnrichment
Updated: 2024-08-02T18:18:10.170Z
NVD
Status : Modified
Published: 2023-09-02T13:15:45.347
Modified: 2024-11-21T08:16:10.643
Link: CVE-2023-39982
Redhat
No data.