Main Vulnerability Database SB2018082303

SB2018082303 - Information disclosure in Dropbear

Published: August 23, 2018

Security Bulletin ID SB2018082303

CSH Severity

Low

Patch available

Number of vulnerabilities 1

Exploitation vector Remote access

Highest impact Information disclosure

Breakdown by Severity

Low
Medium
High
Critical

Description

This security bulletin contains information about 1 vulnerability.

1) Information disclosure (CVE-ID: CVE-2018-15599)

CWE-ID: CWE-200 - Exposure of sensitive information to an unauthorized actor

CVSSv4: CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:L/VI:N/VA:N/SC:N/SI:N/SA:N/E:P/U:Clear

The vulnerability allows a remote attacker to obtain potentially sensitive information.

The vulnerability exists in the recv_msg_userauth_request function, as defined in the svr-auth.c source code file due to the way fields in SSH_MSG_USERAUTH messages are handled based on username validity. A remote attacker can send an authentication request packet and access sensitive information, such as valid usernames.

Remediation

Cybersecurity Help is not aware of any official remediation provided by the vendor.

References

http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2018q3/002109.html