CVE-2019-19755
April 30, 2024, 7:35 p.m.
Tags
Product(s) Impacted
ethOS
- through 1.3.3
ethOS
- 1.3.3
Description
ethOS through 1.3.3 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and makes identification of all public IPv4 nodes trivial with Shodan.io. NOTE: as of 2019-12-01, the vendor indicated that they plan to fix this.
Weaknesses
Date
Published: April 30, 2024, 6:15 p.m.
Last Modified: April 30, 2024, 7:35 p.m.
Status : Awaiting Analysis
CVE has been recently published to the CVE List and has been received by the NVD.
More infoSource
cve@mitre.org