Cryptographic Key Exposure in Cisco Cloud Portal 9.4.1 and Earlier

Cryptographic Key Exposure in Cisco Cloud Portal 9.4.1 and Earlier

CVE-2014-0694 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:N/A:N

Intelligent Automation for Cloud (IAC) in Cisco Cloud Portal 9.4.1 and earlier includes a cryptographic key in binary files, which makes it easier for remote attackers to obtain cleartext data from an arbitrary IAC installation by leveraging knowledge of this key, aka Bug IDs CSCui34764, CSCui34772, CSCui34776, CSCui34798, CSCui34800, CSCui34805, CSCui34809, CSCui34810, CSCui34813, CSCui34814, and CSCui34818.

Learn more about our Cis Benchmark Audit For Cisco.