Main Vulnerability Database Vulnerabilities #VU71772

Security features bypass in OpenSSH - #VU71772

Published: February 2, 2023

Vulnerability identifier: #VU71772

CSH Severity: Low

CVSSv4.0: CVSS:4.0/AV:N/AC:L/AT:P/PR:N/UI:N/VC:N/VI:L/VA:N/SC:N/SI:N/SA:N/E:U/U:Clear

CVE-ID: N/A

CWE-ID: CWE-254

Exploitation vector: Remote access

Exploit availability: No public exploit available

Vulnerable software:
OpenSSH

Software vendor:
OpenSSH

Description

The vulnerability allows a remote attacker to bypass implemented security restrictions.

The vulnerability exists due to a logic error when parsing the PermitRemoteOpen option. The PermitRemoteOpen option would ignore its first argument unless it was one of the special keywords "any" or "none", causing the permission list to fail open if only one permission was specified.

Remediation

Install updates from vendor's website.

External links

https://www.openssh.com/releasenotes.html#9.2

Security features bypass in OpenSSH - #VU71772

Description

Remediation

External links

Please verify you're human