CVE-2015-6316
published 2015-11-06CVE-2015-6316: The default configuration of sshd_config in Cisco Mobility Services Engine (MSE) through 8.0.120.7 allows logins by the oracle account, which makes it easier…
PriorityP340medium6.5CVSS 2.0
AVNACLAuSCPIPAP
EPSS
2.40%
82.0th percentile
The default configuration of sshd_config in Cisco Mobility Services Engine (MSE) through 8.0.120.7 allows logins by the oracle account, which makes it easier for remote attackers to obtain access by entering this account's hardcoded password in an SSH session, aka Bug ID CSCuv40501.
Affected
15 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine | — | — |
| cisco | mobility_services_engine_static_credential | — | — |
CVSS provenance
nvdv2.06.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:P
vendor_cisco6.5MEDIUM
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Cisco Mobility Services Engine Static Credential Vulnerability
vendor_cisco·2015-11-05·CVSS 6.5
CVE-2015-6316 [MEDIUM] CWE-255 Cisco Mobility Services Engine Static Credential Vulnerability
Cisco Mobility Services Engine Static Credential Vulnerability
A vulnerability in the Cisco Mobility Services Engine (MSE) could allow an unauthenticated, remote attacker to log in to the MSE with the default oracle account. This account does not have full administrator privileges.
The vulnerability is due to a user account that has a default and static password. This account is created at installation and cannot be changed or deleted without impacting the functionality of the system. An attacker could exploit this vulnerability by remotely connecting to the affected system via SSH using this account. A successful exploit could allow the attacker to log in to the MSE using the default oracle account.
Cisco has released software updates that address this vulnerability. A workaround that m
Cisco
Cisco Mobility Services Engine Static Credential Vulnerability
vendor_cisco
CVE-2015-6316 Cisco Mobility Services Engine Static Credential Vulnerability
CVE-2015-6316: Cisco Mobility Services Engine Static Credential Vulnerability
A vulnerability in the Cisco Mobility Services Engine (MSE) could allow an unauthenticated, remote attacker to log in to the MSE with the default oracle account. This account does not have full administrator privileges. The vulnerability is due to a user account that has a default and static password. This account is created at installation and cannot be changed or deleted without impacting the functionality of the system. An attacker could exploit this vulnerability by remotely connecting to the affected system via SSH using this account. A successful exploit could allow the attacker to log in to the MSE using the default oracle account. Cisco has released software updates that address this vulnerability. A work
GHSA
GHSA-qh56-pj29-rjh8: The default configuration of sshd_config in Cisco Mobility Services Engine (MSE) through 8
ghsa_unreviewed·2022-05-17
CVE-2015-6316 [MEDIUM] GHSA-qh56-pj29-rjh8: The default configuration of sshd_config in Cisco Mobility Services Engine (MSE) through 8
The default configuration of sshd_config in Cisco Mobility Services Engine (MSE) through 8.0.120.7 allows logins by the oracle account, which makes it easier for remote attackers to obtain access by entering this account's hardcoded password in an SSH session, aka Bug ID CSCuv40501.
No detection rules found.
No public exploits indexed.
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151104-mse-credhttp://www.securityfocus.com/bid/77432http://www.securitytracker.com/id/1034065http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151104-mse-credhttp://www.securityfocus.com/bid/77432http://www.securitytracker.com/id/1034065
2015-11-06
Published