3.7

CVE-2021-36368

EPSS 0.4%
Published 13.03.2022 00:15:07
Last modified 21.11.2024 06:13:36
Source cve@mitre.org
Teams watchlist Login
Open Login

An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is "this is not an authentication bypass, since nothing is being bypassed.

Affected products Warnungen 0 Metrics 3 CWE 1 References 8

Data is provided by the National Vulnerability Database (NVD)

Openbsd ≫ Openssh Version < 8.9

Debian ≫ Debian Linux Version9.0

Debian ≫ Debian Linux Version10.0

Debian ≫ Debian Linux Version11.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	0.4%	0.596

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	3.7	2.2	1.4	CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N
nvd@nist.gov	2.6	4.9	2.9	AV:N/AC:H/Au:N/C:P/I:N/A:N

CWE-287 Improper Authentication

When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.

https://www.openssh.com/security.html

Vendor Advisory

https://bugzilla.mindrot.org/show_bug.cgi?id=3316

Third Party Advisory

Issue Tracking

https://docs.ssh-mitm.at/trivialauth.html

Third Party Advisory

https://github.com/openssh/openssh-portable/pull/258

Patch

Third Party Advisory

https://security-tracker.debian.org/tracker/CVE-2021-36368

Third Party Advisory

https://nvd.nist.gov/vuln/detail/CVE-2021-36368

CVE Source (NVD)

https://cveawg.mitre.org/api/cve/CVE-2021-36368

CVE Source (JSON)

https://euvd.enisa.europa.eu/vulnerability/CVE-2021-36368

EUVD