Vulnerability Details CVE-2017-14021
A Use of Hard-coded Cryptographic Key issue was discovered in Korenix JetNet JetNet5018G version 1.4, JetNet5310G version 1.4a, JetNet5428G-2G-2FX version 1.4, JetNet5628G-R version 1.4, JetNet5628G version 1.4, JetNet5728G-24P version 1.4, JetNet5828G version 1.1d, JetNet6710G-HVDC version 1.1e, and JetNet6710G version 1.1. An attacker may gain access to hard-coded certificates and private keys allowing the attacker to perform man-in-the-middle attacks.
Exploit prediction scoring system (EPSS) score
EPSS Score 0.001
EPSS Ranking 25.3%
CVSS Severity
CVSS v3 Score 9.8
CVSS v2 Score 10.0
References
Products affected by CVE-2017-14021
-
cpe:2.3:h:korenix:jetnet5628g-r_firmware:1.4
-
cpe:2.3:h:korenix:jetnet5728g-24p_firmware:1.4
-
cpe:2.3:h:korenix:jetnet5828g_firmware:1.1d
-
cpe:2.3:h:korenix:jetnet_5018g:-
-
cpe:2.3:h:korenix:jetnet_5310g:-
-
cpe:2.3:h:korenix:jetnet_5428g-2g-2fx:-
-
cpe:2.3:h:korenix:jetnet_5628g-r:-
-
cpe:2.3:h:korenix:jetnet_5628g:-
-
cpe:2.3:h:korenix:jetnet_5728g-24p:-
-
cpe:2.3:h:korenix:jetnet_5828g:-
-
cpe:2.3:h:korenix:jetnet_6710g-hvdc:-
-
cpe:2.3:h:korenix:jetnet_6710g:-
-
cpe:2.3:o:korenix:jetnet5018g_firmware:1.4
-
cpe:2.3:o:korenix:jetnet5310g_firmware:1.4a
-
cpe:2.3:o:korenix:jetnet5428g-2g-2fx_firmware:1.4
-
cpe:2.3:o:korenix:jetnet5628g_firmware:1.4
-
cpe:2.3:o:korenix:jetnet6710g-hvdc_firmware:11e
-
cpe:2.3:o:korenix:jetnet6710g_firmware:1.1