OpenSSH Command Injection Vulnerability

DjRg — Tue, 05 Dec 2023 19:24:23 GMT

I had a review and I got the following problem

Has anyone had this problem and if so, how did they solve it?

"OpenSSH (OpenBSD Secure Shell) is a set of computer programs providing encrypted communication sessions over a computer network using the SSH protocol.

OpenSSH contains the following vulnerabilities:

OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows.

Affected Versions:

OpenSSH versions prior to 8.3

Customers are advised to upgrade to OpenSSH 8.3 (https://www.openssh.com/) or later to remediate these vulnerabilities.

Patch:

Following are links for downloading patches to fix the vulnerabilities:

OpenSSH 8.3 (https://www.openssh.com/)

QID Detection Logic:

This unauthenticated detection works by reviewing the version of the OpenSSH service.

Vulnerable SSH-2.0-OpenSSH_8.0 PKIX[Portable] detected on port 22 over TCP."

Re: OpenSSH Command Injection Vulnerability

georgek_1 — Wed, 20 Dec 2023 11:26:16 GMT

Hello DjRg,

As per the infromation shared, you need to udate OpenSSH 8.3 (https://www.openssh.com/) or later to remediate these vulnerabilities.

I work for HPE/ I am an HPE Employee (HPE Community)

topic Re: OpenSSH Command Injection Vulnerability in Operating System - HP-UX

OpenSSH Command Injection Vulnerability

Re: OpenSSH Command Injection Vulnerability