#VU11130 Authentication bypass in Paramiko


Published: 2020-03-18 | Updated: 2021-06-17

Vulnerability identifier: #VU11130

Vulnerability risk: Low

CVSSv3.1: 6.6 [CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:L/E:P/RL:O/RC:C]

CVE-ID: CVE-2018-7750

CWE-ID: CWE-592

Exploitation vector: Network

Exploit availability: Yes

Vulnerable software:
Paramiko
Client/Desktop applications / Encryption software

Vendor: Jeff Forcier

Description
The vulnerability allows a remote unauthenticated attacker to bypass authentication.

The weakness exists is due to improper security restrictions. A remote attacker can use a customized SSH client, bypass authentication and gain unauthorized access to resources on the target systemю

Mitigation
Update to versions 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5 or 1.17.6.

Vulnerable software versions

Paramiko: 1.17 - 2.4.0

External links
http://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516

Q & A

Can this vulnerability be exploited remotely?

Yes. This vulnerability can be exploited by a remote non-authenticated attacker via the Internet.

Is there known malware, which exploits this vulnerability?

No. We are not aware of malware exploiting this vulnerability. However, proof of concept for this vulnerability is available.


Latest bulletins with this vulnerability


Authentication bypass in py3-paramiko (Alpine package)
Multiple vulnerabilities in Red Hat CloudForms
Red Hat update for jackson-databind
Red Hat update for cloudforms
Red Hat update for Paramiko
Red Hat update for Paramiko
Red Hat update for python-paramiko
Red Hat update for python-paramiko
Amazon Linux AMI update for python-paramiko
SUSE Linux update for python-paramiko