CVE-2015-7256

ZyXEL NWA1100-N, NWA1100-NH, NWA1121-NI, NWA1123-AC, and NWA1123-NI access points; P-660HN-51, P-663HN-51, VMG1312-B10A, VMG1312-B30A, VMG1312-B30B, VMG4380-B10A, VMG8324-B10A, VMG8924-B10A, VMG8924-B30A, and VSG1435-B101 DSL CPEs; PMG5318-B20A GPONs; SBG3300-N000, SBG3300-NB00, and SBG3500-N000 small business gateways; GS1900-8 and GS1900-24 switches; and C1000Z, Q1000, FR1000Z, and P8702N project models use non-unique X.509 certificates and SSH host keys.
Configurations

Configuration 1 (hide)

AND
cpe:2.3:o:zyxel:nwa1100-n_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa1100-n:-:*:*:*:*:*:*:*

Configuration 2 (hide)

AND
cpe:2.3:o:zyxel:nwa1100-nh_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa1100-nh:-:*:*:*:*:*:*:*

Configuration 3 (hide)

AND
cpe:2.3:o:zyxel:nwa1121-ni_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa1121-ni:-:*:*:*:*:*:*:*

Configuration 4 (hide)

AND
cpe:2.3:o:zyxel:nwa1123-ac_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa1123-ac:-:*:*:*:*:*:*:*

Configuration 5 (hide)

AND
cpe:2.3:o:zyxel:nwa1123-ni_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:nwa1123-ni:-:*:*:*:*:*:*:*

Configuration 6 (hide)

AND
cpe:2.3:o:zyxel:p-660hn-51_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:p-660hn-51:-:*:*:*:*:*:*:*

Configuration 7 (hide)

AND
cpe:2.3:o:zyxel:p-663hn-51_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:p-663hn-51:-:*:*:*:*:*:*:*

Configuration 8 (hide)

AND
cpe:2.3:o:zyxel:vmg1312-b10a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:vmg1312-b10a:-:*:*:*:*:*:*:*

Configuration 9 (hide)

AND
cpe:2.3:o:zyxel:vmg1312-b30a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:vmg1312-b30a:-:*:*:*:*:*:*:*

Configuration 10 (hide)

AND
cpe:2.3:o:zyxel:vmg1312-b30b_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:vmg1312-b30b:-:*:*:*:*:*:*:*

Configuration 11 (hide)

AND
cpe:2.3:o:zyxel:vmg4380-b10a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:vmg4380-b10a:-:*:*:*:*:*:*:*

Configuration 12 (hide)

AND
cpe:2.3:o:zyxel:vmg8324-b10a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:vmg8324-b10a:-:*:*:*:*:*:*:*

Configuration 13 (hide)

AND
cpe:2.3:o:zyxel:vmg8924-b10a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:vmg8924-b10a:-:*:*:*:*:*:*:*

Configuration 14 (hide)

AND
cpe:2.3:o:zyxel:vmg8924-b30a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:vmg8924-b30a:-:*:*:*:*:*:*:*

Configuration 15 (hide)

AND
cpe:2.3:o:zyxel:vsg1435-b101_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:vsg1435-b101:-:*:*:*:*:*:*:*

Configuration 16 (hide)

AND
cpe:2.3:o:zyxel:pmg5318-b20a_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:pmg5318-b20a:-:*:*:*:*:*:*:*

Configuration 17 (hide)

AND
cpe:2.3:o:zyxel:sbg3300-n000_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:sbg3300-n000:-:*:*:*:*:*:*:*

Configuration 18 (hide)

AND
cpe:2.3:o:zyxel:sbg3300-nb00_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:sbg3300-nb00:-:*:*:*:*:*:*:*

Configuration 19 (hide)

AND
cpe:2.3:o:zyxel:sbg3500-n000_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:sbg3500-n000:-:*:*:*:*:*:*:*

Configuration 20 (hide)

AND
cpe:2.3:o:zyxel:gs1900-8_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:gs1900-8:-:*:*:*:*:*:*:*

Configuration 21 (hide)

AND
cpe:2.3:o:zyxel:gs1900-24_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:gs1900-24:-:*:*:*:*:*:*:*

Configuration 22 (hide)

AND
cpe:2.3:o:zyxel:c1000z_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:c1000z:-:*:*:*:*:*:*:*

Configuration 23 (hide)

AND
cpe:2.3:o:zyxel:q1000_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:q1000:-:*:*:*:*:*:*:*

Configuration 24 (hide)

AND
cpe:2.3:o:zyxel:fr1000z_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:fr1000z:-:*:*:*:*:*:*:*

Configuration 25 (hide)

AND
cpe:2.3:o:zyxel:p8702n_firmware:-:*:*:*:*:*:*:*
cpe:2.3:h:zyxel:p8702n:-:*:*:*:*:*:*:*

History

21 Nov 2024, 02:36

Type Values Removed Values Added
References () http://www.kb.cert.org/vuls/id/566724 - Third Party Advisory, US Government Resource () http://www.kb.cert.org/vuls/id/566724 - Third Party Advisory, US Government Resource
References () http://www.zyxel.com/support/announcement_SSH_private_key_and_certificate_vulnerability.shtml - Vendor Advisory () http://www.zyxel.com/support/announcement_SSH_private_key_and_certificate_vulnerability.shtml - Vendor Advisory

Information

Published : 2017-09-28 01:29

Updated : 2024-11-21 02:36


NVD link : CVE-2015-7256

Mitre link : CVE-2015-7256

CVE.ORG link : CVE-2015-7256


JSON object : View

Products Affected

zyxel

  • nwa1123-ni_firmware
  • vmg1312-b30a_firmware
  • vmg1312-b10a_firmware
  • gs1900-24
  • vmg1312-b30b_firmware
  • nwa1100-nh_firmware
  • nwa1123-ac
  • vmg8924-b10a
  • vmg8924-b30a
  • vmg8324-b10a
  • nwa1100-n_firmware
  • sbg3300-n000_firmware
  • c1000z
  • vmg8924-b10a_firmware
  • vmg8924-b30a_firmware
  • q1000
  • sbg3500-n000
  • sbg3300-nb00
  • q1000_firmware
  • vmg1312-b30b
  • p-663hn-51
  • nwa1123-ni
  • p-660hn-51
  • sbg3300-n000
  • p-660hn-51_firmware
  • c1000z_firmware
  • vsg1435-b101
  • vmg4380-b10a_firmware
  • fr1000z
  • gs1900-8
  • fr1000z_firmware
  • sbg3500-n000_firmware
  • nwa1121-ni
  • vsg1435-b101_firmware
  • gs1900-8_firmware
  • vmg4380-b10a
  • pmg5318-b20a_firmware
  • sbg3300-nb00_firmware
  • vmg8324-b10a_firmware
  • nwa1123-ac_firmware
  • p8702n
  • vmg1312-b10a
  • pmg5318-b20a
  • p-663hn-51_firmware
  • p8702n_firmware
  • nwa1121-ni_firmware
  • gs1900-24_firmware
  • nwa1100-nh
  • vmg1312-b30a
  • nwa1100-n
CWE
CWE-310

Cryptographic Issues