Vulnerability identifier: #VU84789

Vulnerability risk: Medium

CVSSv3.1: 6.7 [CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:H/E:P/RL:O/RC:C]

CVE-ID: CVE-2023-51385

CWE-ID: CWE-78

Exploitation vector: Network

Exploits in database: 2

• April 19, 2024
  • poc-proxycommand-vulnerable (Proof of conept to exploit vulnerable proxycommand configurations on ssh clients (CVE-2023-51385)) [Github]
• January 2, 2024
  • CVE-2023-51385 (CVE-2023-51385 PoC Exploit ) [Github]

Impact: Code execution

Vulnerable software:
OpenSSH
Server applications / Remote management servers, RDP, SSH

Vendor: OpenSSH