Insecure SSH Connection Establishment in Previous Versions of Puppet cisco_ios Module

Insecure SSH Connection Establishment in Previous Versions of Puppet cisco_ios Module

CVE-2018-11750 · MEDIUM Severity

AV:N/AC:L/AU:S/C:P/I:N/A:N

Previous releases of the Puppet cisco_ios module did not validate a host's identity before starting a SSH connection. As of the 0.4.0 release of cisco_ios, host key checking is enabled by default.

Learn more about our Cis Benchmark Audit For Apple Ios.