CVE-2018-6695 MEDIUM

CVE-2018-6695: Threat Intelligence Exchange Server (TIE Server) SSH host keys generation vulnerability

Vendor Mcafee
Product Threat Intelligence Exchange Server (TIE Server)
Published October 3, 2018
Last update August 5, 2024

CVSS base score

6.1/10
Attack vector Adjacent
Attack complexity High
Privileges required Low
User interaction Required
Confidentiality High
Integrity High

CVSS vector

CVSS:3.0/AV:A/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:N

What the vulnerability does

01Description

SSH host keys generation vulnerability in the server in McAfee Threat Intelligence Exchange Server (TIE Server) 1.3.0, 2.0.x, 2.1.x, 2.2.0 allows man-in-the-middle attackers to spoof servers via acquiring keys from another environment.

Key dates

02Disclosure timeline

October 3, 2018 CVE published
August 5, 2024 Record updated