Vulnerabilities > CVE-2021-28123 - Insecure Default Initialization of Resource vulnerability in Cohesity Dataplatform

047910
CVSS 7.5 - HIGH
Attack vector
NETWORK
Attack complexity
LOW
Privileges required
NONE
Confidentiality impact
PARTIAL
Integrity impact
PARTIAL
Availability impact
PARTIAL
network
low complexity
cohesity
CWE-1188
NVD
Published: 2021-04-02
Updated: 2022-07-12

Summary

Undocumented Default Cryptographic Key Vulnerability in Cohesity DataPlatform version 6.3 prior 6.3.1g, 6.4 up to 6.4.1c and 6.5.1 through 6.5.1b. The ssh key can provide an attacker access to the linux system in the affected version.

Vulnerable Configurations

Part Description Count
Application
Cohesity
5

Common Weakness Enumeration (CWE)

References