SSH Weak MAC Algorithms Enabled
Article ID: 254765
Updated On:
Products
DX NetOps
Issue/Introduction
Vulnerability.
SSH Weak MAC Algorithms Enabled
| 6 | SSH Weak MAC Algorithms Enabled | The review team observed that the remote SSH server is configured to allow SHA1/MD5/96-bit MAC algorithms. | IP (22/tcp) |
Low | Repeat (now New) | IP(22/tcp) IP(22/tcp) IP(22/tcp) |
Q3 | Successful Exploitation of this Vulnerability can allow attacker to decipher the communication and perform MitM attacks. | It is recommended to disable the weak MAC Algorithms. hmac-md5 hmac-md5-96 hmac-sha1-96 hmac-sha2-256-96 hmac-sha2-512-96 |
Infrastructure |
Environment
Release : 22.2
Resolution
Check with system OS team to fix, as this issue seems to be with OS SSH and impacting port 22.
Feedback
Yes
No
Powered by
