CVE-2022-20773
published 2022-04-21CVE-2022-20773: A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to…
PriorityP343high7.5CVSS 3.1
AVNACHPRNUIRSUCHIHAH
EPSS
1.09%
61.4th percentile
A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to impersonate a VA. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a man-in-the-middle attack on an SSH connection to the Umbrella VA. A successful exploit could allow the attacker to learn the administrator credentials, change configurations, or reload the VA. Note: SSH is not enabled by default on the Umbrella VA.
Affected
3 ranges
| Vendor | Product | Version range | Fixed in |
|---|---|---|---|
| cisco | cisco_umbrella_insights_virtual_appliance | — | — |
| cisco | umbrella_virtual_appliance | < 3.3.2 | 3.3.2 |
| cisco | umbrella_virtual_appliance_static_ssh_host_key | — | — |
CVSS provenance
nvdv3.17.5HIGHCVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H
nvdv2.06.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:P
vendor_cisco7.5HIGH
Stop checking back — get the weekly exploitation signal.
Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.
Cisco
Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability
vendor_cisco·2022-04-20·CVSS 7.5
CVE-2022-20773 [HIGH] CWE-321 Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability
Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability
A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to impersonate a VA.
This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a man-in-the-middle attack on an SSH connection to the Umbrella VA. A successful exploit could allow the attacker to learn the administrator credentials, change configurations, or reload the VA.
Note: SSH is not enabled by default on the Umbrella VA.
Cisco has released software updates that address this vulnerability. There are no workarounds that address this vulnerability.
This advisory is available at the following link:https
Cisco
Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability
vendor_cisco·CVSS 3.1
CVE-2022-20773 Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability
CVE-2022-20773: Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability
A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to impersonate a VA. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a man-in-the-middle attack on an SSH connection to the Umbrella VA. A successful exploit could allow the attacker to learn the administrator credentials, change configurations, or reload the VA. Note : SSH is not enabled by default on the Umbrella VA. Cisco has released software updates that address this vulnerability. There are no
CVSS: 3.1
CWE: CWE-321, CWE-321
Bug IDs: CSCwa11399
GHSA
GHSA-wmwq-58jv-2qj3: A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker
ghsa_unreviewed·2022-04-22
CVE-2022-20773 [HIGH] CWE-798 GHSA-wmwq-58jv-2qj3: A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker
A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to impersonate a VA. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a man-in-the-middle attack on an SSH connection to the Umbrella VA. A successful exploit could allow the attacker to learn the administrator credentials, change configurations, or reload the VA. Note: SSH is not enabled by default on the Umbrella VA.
No detection rules found.
No public exploits indexed.
No writeups or analysis indexed.
2022-04-21
Published