Multiple authentication vulnerabilities in OpenBSD have been disclosed by Qualys Research Labs. The vulnerabilities are assigned following CVEs: CVE-2019-19522, CVE-2019-19521, CVE-2019-19520, CVE-2019-19519. OpenBSD developers have confirmed the vulnerabilities and also provided a quick response with patches published in less than 40 hours.
For technical details on this vulnerability, please see our security advisory.
Qualys has issued QID 38774 for Qualys Vulnerability Management that covers authentication vulnerabilities in OpenBSD. This QID is included in signature version VULNSIGS-2.4.762-6.
QID 38774 – This detection includes both remote and authenticated checks:
You can search for this new QID in AssetView or within the VM Dashboard by using the following QQL query:
vulnerabilities.vulnerability.qid:38774
vulnerabilities.vulnerability.(cveId:CVE-2019-19519
OR cveId:CVE-2019-19520
OR cveId:CVE-2019-19521
OR cveId:CVE-2019-19522
)
You can also create a Dashboard to track all OpenBSD Vulnerabilities as shown in the template below -
UPDATE:-
Qualys has also provided template information to create OpenBSD Vulnerabilities Dashboard leveraging data in Qualys Vulnerability Management subscription
The fastest way to locate vulnerable hosts is though the Qualys Threat Protection Live Feed as seen here:
To remediate this vulnerability, apply the latest patches for OpenBSD 6.5 and OpenBSD 6.6.
Qualys customers can scan their network with QID 38774 to detect vulnerable assets.