Threat Intelligence Exchange Server (TIE Server) SSH host keys generation vulnerability
CVE-2018-6695

6.1MEDIUM

Key Information:

Vendor: Mcafee
Status: Threat Intelligence Exchange Server (tie Server)
Vendor: CVE Published:; 3 October 2018

What is CVE-2018-6695?

SSH host keys generation vulnerability in the server in McAfee Threat Intelligence Exchange Server (TIE Server) 1.3.0, 2.0.x, 2.1.x, 2.2.0 allows man-in-the-middle attackers to spoof servers via acquiring keys from another environment.

Affected Version(s)

Threat Intelligence Exchange Server (TIE Server) x86 1.3.0

Threat Intelligence Exchange Server (TIE Server) x86 2.0.0 < 2.0.0*

Threat Intelligence Exchange Server (TIE Server) x86 2.3.0 < 2.3.0*

References

https://kc.mcafee.com/corporate/index?page=content&id=SB1...

x_refsource_CONFIRM

CVSS V3.1

Score:

6.1

Severity:

MEDIUM

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Adjacent Network

Attack Complexity:

High

Privileges Required:

Low

User Interaction:

Required

Scope:

Unchanged

Download the Critical Vulnerability Management Cheat Sheet

Timeline

Vulnerability published
Oct 3, 2018
Vulnerability Reserved
Feb 6, 2018

Mcafee

What is CVE-2018-6695?

Affected Version(s)

References

CVSS V3.1

Timeline