Name of the Vulnerable Software and Affected Versions Cisco Small Business series 250, 350, 350X, 550X (affected versions not specified) Cisco FindIT Network Probe (affected versions not specified)

Description The issue is related to a hardcoded X.509 certificate public/private key pair in the software of Cisco Small Business series routers and the Cisco FindIT Network Probe virtual machine image. This could allow a remote attacker to gain elevated privileges.

Recommendations For Cisco Small Business series 250, 350, 350X, 550X, consider restricting access to the device until a fix is available. For Cisco FindIT Network Probe, avoid using the virtual machine image until the issue is resolved. At the moment, there is no information about a newer version that contains a fix for this vulnerability.