Vulnerabilities > CVE-2015-7256 - Cryptographic Issues vulnerability in Zyxel products

CVSS 5.9 - MEDIUM

Attack vector

NETWORK

Attack complexity

HIGH

Privileges required

NONE

Confidentiality impact

HIGH

Integrity impact

NONE

Availability impact

NONE

network

high complexity

zyxel

CWE-310

nessus

NVD

Published: 2017-09-28

Updated: 2017-10-11

Summary

ZyXEL NWA1100-N, NWA1100-NH, NWA1121-NI, NWA1123-AC, and NWA1123-NI access points; P-660HN-51, P-663HN-51, VMG1312-B10A, VMG1312-B30A, VMG1312-B30B, VMG4380-B10A, VMG8324-B10A, VMG8924-B10A, VMG8924-B30A, and VSG1435-B101 DSL CPEs; PMG5318-B20A GPONs; SBG3300-N000, SBG3300-NB00, and SBG3500-N000 small business gateways; GS1900-8 and GS1900-24 switches; and C1000Z, Q1000, FR1000Z, and P8702N project models use non-unique X.509 certificates and SSH host keys.

Vulnerable Configurations

Part	Description	Count
OS	Zyxel Zyxel Nwa1100 N Firmware - Zyxel Nwa1100 NH Firmware - Zyxel Nwa1121 NI Firmware - Zyxel Nwa1123 AC Firmware - Zyxel Nwa1123 NI Firmware - Zyxel P 660Hn 51 Firmware - Zyxel P 663Hn 51 Firmware - Zyxel Vmg1312 B10A Firmware - Zyxel Vmg1312 B30A Firmware - Zyxel Vmg1312 B30B Firmware - Zyxel Vmg4380 B10A Firmware - Zyxel Vmg8324 B10A Firmware - Zyxel Vmg8924 B10A Firmware - Zyxel Vmg8924 B30A Firmware - Zyxel Vsg1435 B101 Firmware - Zyxel Pmg5318 B20A Firmware - Zyxel Sbg3300 N000 Firmware - Zyxel Sbg3300 Nb00 Firmware - Zyxel Sbg3500 N000 Firmware - Zyxel Gs1900 8 Firmware - Zyxel Gs1900 24 Firmware - Zyxel C1000Z Firmware - Zyxel Q1000 Firmware - Zyxel Fr1000Z Firmware - Zyxel P8702N Firmware -	25
Hardware	Zyxel Zyxel Nwa1100 N - Zyxel Nwa1100 NH - Zyxel Nwa1121 NI - Zyxel Nwa1123 AC - Zyxel Nwa1123 NI - Zyxel P 660Hn 51 - Zyxel P 663Hn 51 - Zyxel Vmg1312 B10A - Zyxel Vmg1312 B30A - Zyxel Vmg1312 B30B - Zyxel Vmg4380 B10A - Zyxel Vmg8324 B10A - Zyxel Vmg8924 B10A - Zyxel Vmg8924 B30A - Zyxel Vsg1435 B101 - Zyxel Pmg5318 B20A - Zyxel Sbg3300 N000 - Zyxel Sbg3300 Nb00 - Zyxel Sbg3500 N000 - Zyxel Gs1900 8 - Zyxel Gs1900 24 - Zyxel C1000Z - Zyxel Q1000 - Zyxel Fr1000Z - Zyxel P8702N -	25

Common Weakness Enumeration (CWE)

CWE-310 - Cryptographic Issues

Common Attack Pattern Enumeration and Classification (CAPEC)

Signature Spoofing by Key Recreation
An attacker obtains an authoritative or reputable signer's private signature key by exploiting a cryptographic weakness in the signature algorithm or pseudorandom number generation and then uses this key to forge signatures from the original signer to mislead a victim into performing actions that benefit the attacker.

Nessus

NASL family	Misc.
NASL id	SSH_HARDCODED_KEYS.NASL
description	The remote host is running a service that is using a publicly known SSH private key. An attacker may use this key to decrypt intercepted traffic between users and the device. A remote attacker can also perform a man-in-the-middle attack in order to gain access to the system or modify data in transit.
last seen	2020-06-01
modified	2020-06-02
plugin id	121007
published	2019-01-08
reporter	This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/121007
title	SSH Known Hard Coded Private Keys

NASL family	Misc.
NASL id	SSL_HARDCODED_KEYS.NASL
description	The remote host is running a service that is using a publicly known SSL / TLS private key. An attacker may use this key to decrypt intercepted traffic between users and the device. A remote attacker can also perform a man-in-the-middle attack in order to gain access to the system or modify data in transit.
last seen	2020-06-01
modified	2020-06-02
plugin id	121008
published	2019-01-08
reporter	This script is Copyright (C) 2019 and is owned by Tenable, Inc. or an Affiliate thereof.
source	https://www.tenable.com/plugins/nessus/121008
title	SSL / TLS Certificate Known Hard Coded Private Keys

Summary

Vulnerable Configurations

Common Weakness Enumeration (CWE)

Common Attack Pattern Enumeration and Classification (CAPEC)

Nessus

References