CVE-2017-5243

HIGH Year: 2017
CVSS v3 Score
8.5
High
CVSS v2 Score
6.8
Medium
Weakness Type
CWE-327
View all →

Vulnerability Description

The default SSH configuration in Rapid7 Nexpose hardware appliances shipped before June 2017 does not specify desired algorithms for key exchange and other important functions. As a result, it falls back to allowing ALL algorithms supported by the relevant version of OpenSSH and makes the installations vulnerable to a range of MITM, downgrade, and decryption attacks.

Related Vulnerabilities

CVE-2024-47921

HIGH
CVSS:8.4(High)

Smadar SPS – CWE-327: Use of a Broken or Risky Cryptographic Algorithm

CWE-3272024

CVE-2013-20003

HIGH
CVSS:8.3(High)

Z-Wave devices from Sierra Designs (circa 2013) and Silicon Labs (using S0 security) may use a known, shared network key of all zeros, allowing an attacker within radio range to spoof Z-Wave traffic.

CWE-3272013

CVE-2020-27652

HIGH
CVSS:8.3(High)

Algorithm downgrade vulnerability in QuickConnect in Synology DiskStation Manager (DSM) before 6.2.3-25426-2 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via un...

CWE-3272020

CVE-2020-27653

HIGH
CVSS:8.3(High)

Algorithm downgrade vulnerability in QuickConnect in Synology Router Manager (SRM) before 1.2.4-8081 allows man-in-the-middle attackers to spoof servers and obtain sensitive information via unspecifie...

CWE-3272020

CVE-2018-10084

HIGH
CVSS:8.8(High)

CMS Made Simple (CMSMS) through 2.2.6 contains a privilege escalation vulnerability from ordinary user to admin user by arranging for the eff_uid value within $_COOKIE[$this->_loginkey] to equal 1, be...

CWE-3272018

CVE-2019-9013

HIGH
CVSS:8.8(High)

An issue was discovered in 3S-Smart CODESYS V3 products. The application may utilize non-TLS based encryption, which results in user credentials being insufficiently protected during transport. All va...

CWE-3272019