CVE-2018-6695

Summary

SSH host keys generation vulnerability in the server in McAfee Threat Intelligence Exchange Server (TIE Server) 1.3.0, 2.0.x, 2.1.x, 2.2.0 allows man-in-the-middle attackers to spoof servers via acquiring keys from another environment.

Affected Software

VendorProductVersion RangeStatus
McAfeeThreat Intelligence Exchange Server (TIE Server)1.3.0affected
McAfeeThreat Intelligence Exchange Server (TIE Server)2.0.0 < 2.0.0*affected
McAfeeThreat Intelligence Exchange Server (TIE Server)2.3.0 < 2.3.0*unaffected

Weaknesses

  • SSH host keys generation vulnerability

ADP Enrichment

CVE Program Container

Additional References

References