Static SSH Private Key Used (TCP) CVE-2012-1493CVE-2013-0137CVE-2013-3619CVE-2014-8428CVE-2015-0936CVE-2016-1561CVE-2018-16158

Name: Static SSH Private Key Used (TCP) (CVE-2012-1493, CVE-2013-0137, CVE-2013-3619, CVE-2014-8428, CVE-2015-0936, CVE-2016-1561, CVE-2018-16158)
Published: 2018-01-02T00:00:00.000Z

Severity: Not available

Vulnerability description: Not available
Risk description: Not available
Recommendation: Not available
References: http://packetstormsecurity.com/files/125761/Array-Networks-vxAG-xAPV-Privilege-Escalation.html http://seclists.org/fulldisclosure/2015/Jan/76 https://github.com/cmaruti/reports/raw/master/barracuda_load_balancer_vm.pdf https://gist.github.com/todb-r7/5d86ecc8118f9eeecc15 https://blog.rapid7.com/2016/04/07/r7-2016-04-exagrid-backdoor-ssh-keys-and-hardcoded-credentials/https://www.trustmatta.com/advisories/MATTA-2012-002.txt https://blog.rapid7.com/2012/06/11/scanning-for-vulnerable-f5-bigips-with-metasploit/http://packetstormsecurity.com/files/125754/Loadbalancer.org-Enterprise-VA-7.5.2-Static-SSH-Key.html https://www.kb.cert.org/vuls/id/662676 http://packetstormsecurity.com/files/125755/quantum-root.txt https://github.com/mitchellh/vagrant/tree/master/keys https://blog.rapid7.com/2013/11/06/supermicro-ipmi-firmware-vulnerabilities/https://github.com/BrianWGray/msf/blob/master/exploits/linux/ssh/eaton_known_privkey.rb
Codename: Not available

Detectable with: Network Scanner
Scan engine: OpenVAS
Cisa Kev: No
Exploitable with Sniper: No
CVE Published: Not available
Detection added at: Jan 2, 2018
Software Type: Not available
Vendor: Not available
Product: Not available

Detect & validate this vulnerability

Go beyond surface scans. Get real validation with proprietary tools designed to prove what’s exploitable in your environment.

Compare paid plans See all tools