MEDIUM✓ PATCH🇬🇧 English

CVE-2015-6418

CVSS 4.3v2.0pub. 2015-12-13upd. 2026-05-06

The random-number generator on Cisco Small Business RV routers 4.x and SA500 security appliances 2.2.07 does not have sufficient entropy, which makes it easier for remote attackers to determine a TLS key pair via unspecified computations upon handshake key-exchange data, aka Bug ID CSCus15224.

oryginał EN
CVSS Vector
AV:N/AC:M/Au:N/C:P/I:N/A:N
  • Cisco Rv016 Multi Wan Vpn Firmware

    APP
    Cisco
    4.0.0.74.0.2.84.0.5.0
  • Cisco Rv042 Dual Wan Vpn Router Firmware

    APP
    Cisco
    4.0.2.8
  • Cisco Rv042g Dual Gigabit Wan Vpn Firmware

    APP
    Cisco
    4.0.0.74.2.2.74.2.2.8
  • Cisco Rv082 Dual Wan Vpn Router Firmware

    APP
    Cisco
    4.0.0.74.0.2.8
  • Cisco Sa520

    OS
    Cisco
    2.2.07
  • Cisco Sa520w

    OS
    Cisco
    2.2.07
  • Cisco Sa540

    OS
    Cisco
    2.2.07
🟢
PATCH DOSTĘPNY
Aktualizacja od producenta gotowa. Wdrożenie w ramach standardowego cyklu.
CWE
Referencje

Powiązane podatności

CVE-2019-15271HIGH8.8⚠ KEVten sam produkt

A vulnerability in the web-based management interface of certain Cisco Small Business RV Series Routers could ...

CVE-2021-1316HIGH7.2ten sam produkt

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, R...

CVE-2021-1315HIGH7.2ten sam produkt

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, R...

CVE-2021-1314HIGH7.2ten sam produkt

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, R...

CVE-2021-1317HIGH7.2ten sam produkt

Multiple vulnerabilities in the web-based management interface of Cisco Small Business RV016, RV042, RV042G, R...