VYPR
High severity7.4NVD Advisory· Published Aug 22, 2023· Updated Jun 17, 2026

CVE-2023-37426

CVE-2023-37426

Description

EdgeConnect SD-WAN Orchestrator instances prior to the versions resolved in this advisory were found to have shared static SSH host keys for all installations. This vulnerability could allow an attacker to spoof the SSH host signature and thereby masquerade as a legitimate Orchestrator host.

Affected products

2

Patches

Vulnerability mechanics

References

1

News mentions

0

No linked articles in our index yet.