Описание
In VOS compromised, an attacker at network endpoints can possibly view communications between an unsuspecting user and the service using man-in-the-middle attacks. Usage of unapproved SSH encryption protocols or cipher suites also violates the Data Protection TSR (Technical Security Requirements).
Ссылки
- Third Party Advisory
- Third Party Advisory
Уязвимые конфигурации
Конфигурация 1
cpe:2.3:o:versa-networks:versa_operating_system:-:*:*:*:*:*:*:*
EPSS
Процентиль: 21%
0.00067
Низкий
5.9 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-326
CWE-326
Связанные уязвимости
github
больше 3 лет назад
In VOS compromised, an attacker at network endpoints can possibly view communications between an unsuspecting user and the service using man-in-the-middle attacks. Usage of unapproved SSH encryption protocols or cipher suites also violates the Data Protection TSR (Technical Security Requirements).
EPSS
Процентиль: 21%
0.00067
Низкий
5.9 Medium
CVSS3
4.3 Medium
CVSS2
Дефекты
CWE-326
CWE-326