CVE-2023-51385

EPSS 9.6%
Published 18.12.2023 19:15:08
Last modified 21.11.2024 08:37:59
Source cve@mitre.org
Teams watchlist Login
Open Login

In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.

Affected products Warnungen 0 Metrics 2 CWE 1 References 14

Data is provided by the National Vulnerability Database (NVD)

Openbsd ≫ Openssh Version < 9.6

Debian ≫ Debian Linux Version10.0

Debian ≫ Debian Linux Version11.0

Debian ≫ Debian Linux Version12.0

Zu dieser CVE wurde keine CISA KEV oder CERT.AT-Warnung gefunden.

EPSS Metriken
Type	Source	Score	Percentile
EPSS	FIRST.org	9.6%	0.926

CVSS Metriken
Source	Base Score	Exploit Score	Impact Score	Vector string
nvd@nist.gov	6.5	3.9	2.5	CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

CWE-78 Improper Neutralization of Special Elements used in an OS Command ('OS Command Injection')

The product constructs all or part of an OS command using externally-influenced input from an upstream component, but it does not neutralize or incorrectly neutralizes special elements that could modify the intended OS command when it is sent to a downstream component.

https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html

Third Party Advisory

Mailing List

https://www.debian.org/security/2023/dsa-5586

Third Party Advisory

http://seclists.org/fulldisclosure/2024/Mar/21

https://support.apple.com/kb/HT214084

https://security.gentoo.org/glsa/202312-17

Third Party Advisory

https://www.openssh.com/txt/release-9.6

Release Notes

https://www.openwall.com/lists/oss-security/2023/12/18/2