Shared SSL Private Key Vulnerability in Westermo WeOS

Shared SSL Private Key Vulnerability in Westermo WeOS

CVE-2015-7923 · HIGH Severity

AV:N/AC:M/AU:N/C:C/I:C/A:C

Westermo WeOS before 4.19.0 uses the same SSL private key across different customers' installations, which makes it easier for man-in-the-middle attackers to defeat cryptographic protection mechanisms by leveraging knowledge of a key.

Learn more about our Web Application Penetration Testing UK.