search cancel

SSH Weak MAC Algorithms Enabled

book

Article ID: 254765

calendar_today

Updated On:

Products

DX NetOps

Issue/Introduction

Vulnerability.

 

SSH Weak MAC Algorithms Enabled

 

6 SSH Weak MAC Algorithms Enabled The review team observed that the remote SSH server is configured to allow SHA1/MD5/96-bit MAC algorithms.
IP (22/tcp)
Low Repeat (now New) IP(22/tcp)
IP(22/tcp)
IP(22/tcp)
Q3 Successful Exploitation of this Vulnerability can allow attacker to decipher the communication and perform MitM attacks. It is recommended to disable the weak MAC Algorithms.
hmac-md5
hmac-md5-96
hmac-sha1-96
hmac-sha2-256-96
hmac-sha2-512-96
Infrastructure

Environment

Release : 22.2

Resolution

Check with system OS team to fix, as this issue seems to be with OS SSH and impacting port 22.