Date published: 2015-02-03T11:59:01.187-05:00
Date last modified: 2015-02-03T22:35:18.540-05:00
CVSS Score: 7.1
Principal attack vector: NETWORK
Reference URL: http://packetstormsecurity.com/files/130174/Pexip-Infinity-Non-Unique-SSH-Host-Keys.html
Summary: Pexip Infinity before 8 uses the same SSH host keys across different customers’ installations, which allows man-in-the-middle attackers to spoof Management and Conferencing Nodes by leveraging these keys.