CVE-2015-0936

high-risk
Published 2017-06-01

Ceragon FibeAir IP-10 have a default SSH public key in the authorized_keys file for the mateidu user, which allows remote attackers to obtain SSH access by leveraging knowledge of the private key.

Do I need to act?

!
86.3% chance of exploitation in next 30 days
EPSS score — higher than 14% of all CVEs
-
Not on CISA KEV list
No confirmed active exploitation reported to CISA
!
1 public exploit available
41679
?
Patch status unknown
Check vendor advisories for fix availability and mitigation guidance
9
CVSS 9.8/10 Critical
NETWORK / LOW complexity

Affected Products (1)

Affected Vendors

Ceragon

References (12)

Third Party Advisory http://packetstormsecurity.com/files/131259/Ceragon-FibeAir-IP-10-SSH-Private-Ke...
Exploit http://packetstormsecurity.com/files/131260/Ceragon-FibeAir-IP-10-SSH-Private-Ke...
Mailing List http://seclists.org/fulldisclosure/2015/Apr/3
Third Party Advisory http://www.securityfocus.com/bid/73696
Third Party Advisory https://gist.github.com/todb-r7/5d86ecc8118f9eeecc15
Exploit https://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=2&cad=rja&uact=8&v...
Third Party Advisory http://packetstormsecurity.com/files/131259/Ceragon-FibeAir-IP-10-SSH-Private-Ke...
Exploit http://packetstormsecurity.com/files/131260/Ceragon-FibeAir-IP-10-SSH-Private-Ke...
Mailing List http://seclists.org/fulldisclosure/2015/Apr/3
Third Party Advisory http://www.securityfocus.com/bid/73696
Third Party Advisory https://gist.github.com/todb-r7/5d86ecc8118f9eeecc15
Exploit https://www.google.com/url?sa=t&rct=j&q=&esrc=s&source=web&cd=2&cad=rja&uact=8&v...
64
/ 100
high-risk
Severity 32/34 · Critical
Exploitability 27/34 · High
Exposure 5/34 · Minimal