VU#142546 – SMA Technologies OpCon UNIX agent adds the same SSH key to all installations


SMA Technologies OpCon UNIX agent adds the same SSH key on every installation and subsequent updates. An attacker with access to the private key can gain root access on affected systems.


During OpCon UNIX agent installation and updates, an SSH public key is added to the root account’s authorized_keys file. The corresponding private key titled sma_id_rsa is included with the installation files and is not encrypted with a passphrase. Removal of the OpCon software does not remove the entry from the authorized_keys file.


An attacker with access to the private key included with the OpCon UNIX agent installation files can gain SSH access as root on affected systems.


Remove private key

SMA Technologies has provided a tool to address the issue.

Another option is to manually remove the SSH key entry from root’s authorized_keys file. The key can be identified by its fingerprints:


Depending on the shell and operating system there are various ways to generate fingerprints for public keys listed in authorized_keys.


SMA Technologies reports that “We have updated our UNIX agent version 21.2 package to no longer include (and also remove) any existing vulnerability.”


Thanks to Nick Holland at Holland Consulting for researching and reporting this vulnerability.

This document was written by Kevin Stephens.

Vendor Information





Other Information

CVE IDs: CVE-2022-2154
Date Public: 2022-06-21
Date First Published: 2022-06-21
Date Last Updated: 2022-06-21 16:38 UTC
Document Revision: 1
Privacy Preferences
When you visit our website, it may store information through your browser from specific services, usually in form of cookies. Here you can change your privacy preferences. Please note that blocking some types of cookies may impact your experience on our website and the services we offer.