CVE-2022-20773 — Use of Hard-coded Cryptographic Key in Cisco Umbrella

CWE-321 — Use of Hard-coded Cryptographic Key CWE-798 — Hard-coded Credentials4 documents4 sources

Severity

8.1HIGHNVD

CNA7.5

EPSS

0.9%

top 24.58%

CISA KEV

Not in KEV

Exploit

No known exploits

Affected products

Cisco Umbrella Cisco Umbrella Insights Virtual Appliance

Timeline

PublishedApr 21

Latest updateApr 22

Description

A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker to impersonate a VA. This vulnerability is due to the presence of a static SSH host key. An attacker could exploit this vulnerability by performing a man-in-the-middle attack on an SSH connection to the Umbrella VA. A successful exploit could allow the attacker to learn the administrator credentials, change configurations, or reload the VA. Note: …

CVSS vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:HExploitability: 2.2 | Impact: 5.9

Affected Packages2 packages

▶CVEListV5cisco/cisco_umbrella_insights_virtual_appliancen/a

▶NVDcisco/umbrella< 3.3.2

🔴Vulnerability Details

GHSA

GHSA-wmwq-58jv-2qj3: A vulnerability in the key-based SSH authentication mechanism of Cisco Umbrella Virtual Appliance (VA) could allow an unauthenticated, remote attacker↗2022-04-22

▶

CVEList

Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability↗2022-04-21

▶

📋Vendor Advisories

Cisco

Cisco Umbrella Virtual Appliance Static SSH Host Key Vulnerability↗2022-04-20

▶