Skip to main content

Weos

1 CVEs product

Monthly

CVE-2015-7923 CRITICAL Act Now

Westermo WeOS before 4.19.0 uses the same SSL private key across different customers' installations, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Weos
NVD
CVSS 3.0
9.0
EPSS
0.2%
EPSS 0% CVSS 9.0
CRITICAL Act Now

Westermo WeOS before 4.19.0 uses the same SSL private key across different customers' installations, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection. Rated critical severity (CVSS 9.0), this vulnerability is remotely exploitable, no authentication required. No vendor patch available.

Information Disclosure Weos
NVD

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy