CVE-2015-6418 - Vulnerability Details - OpenCVE

The random-number generator on Cisco Small Business RV routers 4.x and SA500 security appliances 2.2.07 does not have sufficient entropy, which makes it easier for remote attackers to determine a TLS key pair via unspecified computations upon handshake key-exchange data, aka Bug ID CSCus15224.

No CVSS v4.0

No CVSS v3.1

No CVSS v3.0

Access Vector Network

Access Complexity Medium

Authentication None

Confidentiality Impact Partial

Integrity Impact None

Availability Impact None

This CVE is not in the KEV list.

Key SSVC decision points have not yet been added.

Vendors	Products
Cisco	Rv016 Multi-wan Vpn Firmware Rv042 Dual Wan Vpn Router Firmware Rv042g Dual Gigabit Wan Vpn Firmware Rv082 Dual Wan Vpn Router Firmware Sa520 Sa520w Sa540

Configuration 1 [-]

OR	cpe:2.3:o:cisco:sa520:2.2.07:::::::*
	cpe:2.3:o:cisco:sa520w:2.2.07:::::::*
	cpe:2.3:o:cisco:sa540:2.2.07:::::::*

Configuration 2 [-]

OR	cpe:2.3:a:cisco:rv016_multi-wan_vpn_firmware:4.0.0.7:::::::*
	cpe:2.3:a:cisco:rv016_multi-wan_vpn_firmware:4.0.2.8:::::::*
	cpe:2.3:a:cisco:rv016_multi-wan_vpn_firmware:4.0.5.0:::::::*
	cpe:2.3:a:cisco:rv042_dual_wan_vpn_router_firmware:4.0.2.8:::::::*
	cpe:2.3:a:cisco:rv042g_dual_gigabit_wan_vpn_firmware:4.0.0.7:::::::*
	cpe:2.3:a:cisco:rv042g_dual_gigabit_wan_vpn_firmware:4.2.2.7:::::::*
	cpe:2.3:a:cisco:rv042g_dual_gigabit_wan_vpn_firmware:4.2.2.8:::::::*
	cpe:2.3:a:cisco:rv082_dual_wan_vpn_router_firmware:4.0.0.7:::::::*
	cpe:2.3:a:cisco:rv082_dual_wan_vpn_router_firmware:4.0.2.8:::::::*

No data.

References

Link	Providers
http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151210-dwvr
http://www.securityfocus.com/bid/78876
http://www.securitytracker.com/id/1034408
http://www.securitytracker.com/id/1034409

History

No history.

MITRE

Status: PUBLISHED

Assigner: cisco

Published: 2015-12-13T02:00:00

Updated: 2024-08-06T07:22:21.131Z

Reserved: 2015-08-17T00:00:00

Link: CVE-2015-6418

Vulnrichment

No data.

NVD

Status : Modified

Published: 2015-12-13T03:59:09.477

Modified: 2024-11-21T02:34:57.660

Link: CVE-2015-6418

Redhat

No data.

{"containers": {"cna": {"affected": [{"product": "n/a", "vendor": "n/a", "versions": [{"status": "affected", "version": "n/a"}]}], "datePublic": "2015-12-10T00:00:00", "descriptions": [{"lang": "en", "value": "The random-number generator on Cisco Small Business RV routers 4.x and SA500 security appliances 2.2.07 does not have sufficient entropy, which makes it easier for remote attackers to determine a TLS key pair via unspecified computations upon handshake key-exchange data, aka Bug ID CSCus15224."}], "problemTypes": [{"descriptions": [{"description": "n/a", "lang": "en", "type": "text"}]}], "providerMetadata": {"dateUpdated": "2016-12-05T14:57:01", "orgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "shortName": "cisco"}, "references": [{"name": "20151210 Cisco Small Business RV Series and SA500 Series Dual WAN VPN Router Generated Key Pair Information Disclosure Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151210-dwvr"}, {"name": "1034408", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1034408"}, {"name": "1034409", "tags": ["vdb-entry", "x_refsource_SECTRACK"], "url": "http://www.securitytracker.com/id/1034409"}, {"name": "78876", "tags": ["vdb-entry", "x_refsource_BID"], "url": "http://www.securityfocus.com/bid/78876"}], "x_legacyV4Record": {"CVE_data_meta": {"ASSIGNER": "psirt@cisco.com", "ID": "CVE-2015-6418", "STATE": "PUBLIC"}, "affects": {"vendor": {"vendor_data": [{"product": {"product_data": [{"product_name": "n/a", "version": {"version_data": [{"version_value": "n/a"}]}}]}, "vendor_name": "n/a"}]}}, "data_format": "MITRE", "data_type": "CVE", "data_version": "4.0", "description": {"description_data": [{"lang": "eng", "value": "The random-number generator on Cisco Small Business RV routers 4.x and SA500 security appliances 2.2.07 does not have sufficient entropy, which makes it easier for remote attackers to determine a TLS key pair via unspecified computations upon handshake key-exchange data, aka Bug ID CSCus15224."}]}, "problemtype": {"problemtype_data": [{"description": [{"lang": "eng", "value": "n/a"}]}]}, "references": {"reference_data": [{"name": "20151210 Cisco Small Business RV Series and SA500 Series Dual WAN VPN Router Generated Key Pair Information Disclosure Vulnerability", "refsource": "CISCO", "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151210-dwvr"}, {"name": "1034408", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1034408"}, {"name": "1034409", "refsource": "SECTRACK", "url": "http://www.securitytracker.com/id/1034409"}, {"name": "78876", "refsource": "BID", "url": "http://www.securityfocus.com/bid/78876"}]}}}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-06T07:22:21.131Z"}, "title": "CVE Program Container", "references": [{"name": "20151210 Cisco Small Business RV Series and SA500 Series Dual WAN VPN Router Generated Key Pair Information Disclosure Vulnerability", "tags": ["vendor-advisory", "x_refsource_CISCO", "x_transferred"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151210-dwvr"}, {"name": "1034408", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1034408"}, {"name": "1034409", "tags": ["vdb-entry", "x_refsource_SECTRACK", "x_transferred"], "url": "http://www.securitytracker.com/id/1034409"}, {"name": "78876", "tags": ["vdb-entry", "x_refsource_BID", "x_transferred"], "url": "http://www.securityfocus.com/bid/78876"}]}]}, "cveMetadata": {"assignerOrgId": "d1c1063e-7a18-46af-9102-31f8928bc633", "assignerShortName": "cisco", "cveId": "CVE-2015-6418", "datePublished": "2015-12-13T02:00:00", "dateReserved": "2015-08-17T00:00:00", "dateUpdated": "2024-08-06T07:22:21.131Z", "state": "PUBLISHED"}, "dataType": "CVE_RECORD", "dataVersion": "5.1"}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:o:cisco:sa520:2.2.07:*:*:*:*:*:*:*", "matchCriteriaId": "5242A08F-0736-4FAC-B015-46BBF1115B08", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:sa520w:2.2.07:*:*:*:*:*:*:*", "matchCriteriaId": "F6B17623-8183-4C2C-A1BD-1654200D6AC3", "vulnerable": true}, {"criteria": "cpe:2.3:o:cisco:sa540:2.2.07:*:*:*:*:*:*:*", "matchCriteriaId": "C7D2641C-CCFF-411A-96B4-F8823F4B4BA5", "vulnerable": true}], "negate": false, "operator": "OR"}]}, {"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:cisco:rv016_multi-wan_vpn_firmware:4.0.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "8C8A650F-4509-4632-92D3-72C412A49012", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:rv016_multi-wan_vpn_firmware:4.0.2.8:*:*:*:*:*:*:*", "matchCriteriaId": "FC822B95-469E-4DB8-A1C0-B4AAA3D3644F", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:rv016_multi-wan_vpn_firmware:4.0.5.0:*:*:*:*:*:*:*", "matchCriteriaId": "487B2A80-30AD-45F8-A46D-21E04888F3EA", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:rv042_dual_wan_vpn_router_firmware:4.0.2.8:*:*:*:*:*:*:*", "matchCriteriaId": "00D012E7-A12E-44ED-8173-C8B254902886", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:rv042g_dual_gigabit_wan_vpn_firmware:4.0.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "303C48D9-1069-486B-8933-F51DFC82EDAC", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:rv042g_dual_gigabit_wan_vpn_firmware:4.2.2.7:*:*:*:*:*:*:*", "matchCriteriaId": "F5F4636E-25F8-40E3-909F-CB9B93E290E5", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:rv042g_dual_gigabit_wan_vpn_firmware:4.2.2.8:*:*:*:*:*:*:*", "matchCriteriaId": "FDB96FF7-13B9-482F-85E7-C1C68287CF41", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:rv082_dual_wan_vpn_router_firmware:4.0.0.7:*:*:*:*:*:*:*", "matchCriteriaId": "CF1CDD04-A345-4982-A055-BBC990873C4D", "vulnerable": true}, {"criteria": "cpe:2.3:a:cisco:rv082_dual_wan_vpn_router_firmware:4.0.2.8:*:*:*:*:*:*:*", "matchCriteriaId": "1C92A1CD-5AE8-421E-A813-A2738219B673", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "descriptions": [{"lang": "en", "value": "The random-number generator on Cisco Small Business RV routers 4.x and SA500 security appliances 2.2.07 does not have sufficient entropy, which makes it easier for remote attackers to determine a TLS key pair via unspecified computations upon handshake key-exchange data, aka Bug ID CSCus15224."}, {"lang": "es", "value": "El generador de n\u00famero aleatorio en routers Cisco Small Business RV 4.x y dispositivos de seguridad SA500 2.2.07 no tiene suficiente entrop\u00eda, lo que hace que sea m\u00e1s f\u00e1cil para atacantes remotos determinar un par de claves TLS a trav\u00e9s de computaciones no especificadas sobre datos de intercambio de clave en el apret\u00f3n de manos, tambi\u00e9n conocido como Bug ID CSCus15224."}], "id": "CVE-2015-6418", "lastModified": "2024-11-21T02:34:57.660", "metrics": {"cvssMetricV2": [{"acInsufInfo": false, "baseSeverity": "MEDIUM", "cvssData": {"accessComplexity": "MEDIUM", "accessVector": "NETWORK", "authentication": "NONE", "availabilityImpact": "NONE", "baseScore": 4.3, "confidentialityImpact": "PARTIAL", "integrityImpact": "NONE", "vectorString": "AV:N/AC:M/Au:N/C:P/I:N/A:N", "version": "2.0"}, "exploitabilityScore": 8.6, "impactScore": 2.9, "obtainAllPrivilege": false, "obtainOtherPrivilege": false, "obtainUserPrivilege": false, "source": "nvd@nist.gov", "type": "Primary", "userInteractionRequired": false}]}, "published": "2015-12-13T03:59:09.477", "references": [{"source": "ykramarz@cisco.com", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151210-dwvr"}, {"source": "ykramarz@cisco.com", "url": "http://www.securityfocus.com/bid/78876"}, {"source": "ykramarz@cisco.com", "url": "http://www.securitytracker.com/id/1034408"}, {"source": "ykramarz@cisco.com", "url": "http://www.securitytracker.com/id/1034409"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "tags": ["Vendor Advisory"], "url": "http://tools.cisco.com/security/center/content/CiscoSecurityAdvisory/cisco-sa-20151210-dwvr"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securityfocus.com/bid/78876"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1034408"}, {"source": "af854a3a-2127-422b-91ae-364da2661108", "url": "http://www.securitytracker.com/id/1034409"}], "sourceIdentifier": "ykramarz@cisco.com", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-200"}], "source": "nvd@nist.gov", "type": "Primary"}]}