VDB
CVE-2019-19751
CVE-2019-19751
PUBLISHED
CVSS 5.599999904632568 MEDIUM
easyMINE before 2019-12-05 ships with SSH host keys baked into the installation image, which allows man-in-the-middle attacks and makes identification of all public IPv4 nodes trivial with Shodan.io.
EPSS 0.12% · 31.3th percentile
Risk Scores
CVSS 3.1
5.599999904632568
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:L/A:L
EPSS Score
0.12%
31.3th percentile
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| n/a | n/a | *, n/a |
| easymine | easymine | 2019-12-05, * |
Exploit Intelligence
- https://blog.easymine.io (circl)
- https://rsaxvc.net/blog/2020/4/10/Widespread_re-use_of_SSH_Host_Keys_in_Ethereum_Mining_Rig_Operating_Systems.html (vulncheck)
- (vulncheck-reported-exploitation)
- (vulncheck-reported-exploitation)
- (vulncheck-reported-exploitation)
Timeline
- Apr 10, 2020 VulnCheck KEV Exploitation
- Apr 30, 2024 CVE Published
- May 1, 2024 EPSS Score
- May 25, 2024 EPSS Score
- Jun 20, 2024 EPSS Score
- Jul 14, 2024 EPSS Score
- Aug 8, 2024 EPSS Score
- Sep 1, 2024 EPSS Score
- Sep 25, 2024 EPSS Score
- Oct 20, 2024 EPSS Score
- Nov 13, 2024 EPSS Score
- Dec 9, 2024 EPSS Score