CVE-2020-5200

Name of the Vulnerable Software and Affected Versions Minerbabe versions through V4.16

Description The issue allows man-in-the-middle attacks due to SSH host keys being baked into the installation image. This makes it trivial to identify all public IPv4 nodes using Shodan.io.

Recommendations For Minerbabe versions through V4.16, consider regenerating SSH host keys to prevent man-in-the-middle attacks. As a temporary workaround, restrict access to the affected nodes to minimize the risk of exploitation. At the moment, there is no information about a newer version that contains a fix for this vulnerability.