Lucene search

[email protected]NVD:CVE-2023-2283

HistoryMay 26, 2023 - 6:15 p.m.

CVE-2023-2283

2023-05-2618:15:13

CWE-287

[email protected]

web.nvd.nist.gov

libssh

vulnerability

authentication bypass

memory allocation

insufficient memory

memory usage

memory problems

return value

cryptographic verification

CVSS3

6.5

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

AI Score

7.5

Confidence

High

EPSS

0.002

Percentile

52.0%

JSON

A vulnerability was found in libssh, where the authentication check of the connecting client can be bypassed in thepki_verify_data_signature function in memory allocation problems. This issue may happen if there is insufficient memory or the memory usage is limited. The problem is caused by the return value rc, which is initialized to SSH_ERROR and later rewritten to save the return value of the function call pki_key_check_hash_compatible. The value of the variable is not changed between this point and the cryptographic verification. Therefore any error between them calls goto error returning SSH_OK.

Affected configurations

Nvd

Node

libsshlibsshRange0.9.1–0.9.6

libsshlibsshRange0.10.0–0.10.4

Node

fedoraprojectfedoraMatch37

Node

redhatenterprise_linuxMatch8.0

redhatenterprise_linuxMatch9.0

VendorProductVersionCPE
libsshlibssh*cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*
fedoraprojectfedora37cpe:2.3:o:fedoraproject:fedora:37:*:*:*:*:*:*:*
redhatenterprise_linux8.0cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
redhatenterprise_linux9.0cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*

Vendor	Product	Version	CPE
libssh	libssh	*	cpe:2.3:a:libssh:libssh::::::::
fedoraproject	fedora	37	cpe:2.3:o:fedoraproject:fedora:37:::::::*
redhat	enterprise_linux	8.0	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
redhat	enterprise_linux	9.0	cpe:2.3:o:redhat:enterprise_linux:9.0:::::::*