Vulnerability Details : CVE-2015-7256
ZyXEL NWA1100-N, NWA1100-NH, NWA1121-NI, NWA1123-AC, and NWA1123-NI access points; P-660HN-51, P-663HN-51, VMG1312-B10A, VMG1312-B30A, VMG1312-B30B, VMG4380-B10A, VMG8324-B10A, VMG8924-B10A, VMG8924-B30A, and VSG1435-B101 DSL CPEs; PMG5318-B20A GPONs; SBG3300-N000, SBG3300-NB00, and SBG3500-N000 small business gateways; GS1900-8 and GS1900-24 switches; and C1000Z, Q1000, FR1000Z, and P8702N project models use non-unique X.509 certificates and SSH host keys.
Exploit prediction scoring system (EPSS) score for CVE-2015-7256
Probability of exploitation activity in the next 30 days: 0.09%
Percentile, the proportion of vulnerabilities that are scored at or less: ~ 38 % EPSS Score History EPSS FAQ
CVSS scores for CVE-2015-7256
| Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source |
|---|---|---|---|---|---|
|
4.3
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:N/A:N |
8.6
|
2.9
|
NIST |
|
5.9
|
MEDIUM | CVSS:3.0/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N |
2.2
|
3.6
|
NIST |
CWE ids for CVE-2015-7256
-
Assigned by: nvd@nist.gov (Primary)
References for CVE-2015-7256
-
http://www.kb.cert.org/vuls/id/566724
VU#566724 - Embedded devices use non-unique X.509 certificates and SSH host keysThird Party Advisory;US Government Resource
-
http://www.zyxel.com/support/announcement_SSH_private_key_and_certificate_vulnerability.shtml
Zyxel to Fix SSH Private Key and Certificate Vulnerability | ZyXELVendor Advisory
Products affected by CVE-2015-7256
- cpe:2.3:o:zyxel:pmg5318-b20a_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:nwa1100-n_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:nwa1100-nh_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:nwa1121-ni_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:nwa1123-ac_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:nwa1123-ni_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:p-660hn-51_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:p-663hn-51_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:vmg1312-b10a_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:vmg1312-b30a_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:vmg1312-b30b_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:vmg4380-b10a_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:vmg8324-b10a_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:vmg8924-b10a_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:vmg8924-b30a_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:vsg1435-b101_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:sbg3300-n000_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:sbg3300-nb00_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:sbg3500-n000_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:gs1900-8_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:gs1900-24_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:c1000z_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:q1000_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:fr1000z_firmware:-:*:*:*:*:*:*:*
- cpe:2.3:o:zyxel:p8702n_firmware:-:*:*:*:*:*:*:*