crypto key generate rsa general-keys modulus 2048 ip ssh server algorithm kex diffie-hellman-group14-sha1 # (Or higher) Use code with caution. Copied to clipboard Recommended Write-Up Summary Insecure SSH Protocol/Configuration (ssh20cisco125) Common CVEs CVE-1999-0634 (SSHv1), CVE-2008-1159 (IOS DoS) Impact Information disclosure via MitM or Denial of Service (DoS) Severity High (if SSHv1 is enabled) Remediation

Thus, while not a formal CVE, the risk is for any network still running these devices.

A vulnerability existed in the SSH2 (Secure Shell version 2) implementation of Cisco AireOS software, notably impacting the 2500 series controllers. An unauthenticated, remote attacker could exploit this flaw by sending a crafted SSH packet to the controller’s management interface.

Ssh20cisco125 Vulnerability -

crypto key generate rsa general-keys modulus 2048 ip ssh server algorithm kex diffie-hellman-group14-sha1 # (Or higher) Use code with caution. Copied to clipboard Recommended Write-Up Summary Insecure SSH Protocol/Configuration (ssh20cisco125) Common CVEs CVE-1999-0634 (SSHv1), CVE-2008-1159 (IOS DoS) Impact Information disclosure via MitM or Denial of Service (DoS) Severity High (if SSHv1 is enabled) Remediation

Thus, while not a formal CVE, the risk is for any network still running these devices. ssh20cisco125 vulnerability

A vulnerability existed in the SSH2 (Secure Shell version 2) implementation of Cisco AireOS software, notably impacting the 2500 series controllers. An unauthenticated, remote attacker could exploit this flaw by sending a crafted SSH packet to the controller’s management interface. crypto key generate rsa general-keys modulus 2048 ip