CVE-2023-51385

2023-12-2000:00:00

ubuntu.com

142

openssh

command injection

username

host name

metacharacters

git repository

submodule

security support

compatibility

equipment

unix

6.5 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

LOW

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

LOW

Integrity Impact

LOW

Availability Impact

NONE

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N

7.5 High

AI Score

Confidence

Low

0.003 Low

EPSS

Percentile

67.8%

JSON

In ssh in OpenSSH before 9.6, OS command injection might occur if a user
name or host name has shell metacharacters, and this name is referenced by
an expansion token in certain situations. For example, an untrusted Git
repository can have a submodule with shell metacharacters in a user name or
host name.

Notes

Author	Note
seth-arnold	openssh-ssh1 is provided for compatibility with old devices that cannot be upgraded to modern protocols. Thus we may not provide security support for this package if doing so would prevent access to equipment.

OSVersionArchitecturePackageVersionFilename
ubuntu18.04noarchopenssh< 1:7.6p1-4ubuntu0.7+esm3UNKNOWN
ubuntu20.04noarchopenssh< 1:8.2p1-4ubuntu0.11UNKNOWN
ubuntu22.04noarchopenssh< 1:8.9p1-3ubuntu0.6UNKNOWN
ubuntu23.04noarchopenssh< 1:9.0p1-1ubuntu8.7UNKNOWN
ubuntu23.10noarchopenssh< 1:9.3p1-1ubuntu3.2UNKNOWN
ubuntu24.04noarchopenssh< 1:9.6p1-3ubuntu1UNKNOWN
ubuntu14.04noarchopenssh< anyUNKNOWN
ubuntu16.04noarchopenssh< 1:7.2p2-4ubuntu2.10+esm5UNKNOWN
ubuntu18.04noarchopenssh-ssh1< anyUNKNOWN
ubuntu20.04noarchopenssh-ssh1< anyUNKNOWN

OS	Version	Architecture	Package	Version	Filename
ubuntu	18.04	noarch	openssh	< 1:7.6p1-4ubuntu0.7+esm3	UNKNOWN
ubuntu	20.04	noarch	openssh	< 1:8.2p1-4ubuntu0.11	UNKNOWN
ubuntu	22.04	noarch	openssh	< 1:8.9p1-3ubuntu0.6	UNKNOWN
ubuntu	23.04	noarch	openssh	< 1:9.0p1-1ubuntu8.7	UNKNOWN
ubuntu	23.10	noarch	openssh	< 1:9.3p1-1ubuntu3.2	UNKNOWN
ubuntu	24.04	noarch	openssh	< 1:9.6p1-3ubuntu1	UNKNOWN
ubuntu	14.04	noarch	openssh	< any	UNKNOWN
ubuntu	16.04	noarch	openssh	< 1:7.2p2-4ubuntu2.10+esm5	UNKNOWN
ubuntu	18.04	noarch	openssh-ssh1	< any	UNKNOWN
ubuntu	20.04	noarch	openssh-ssh1	< any	UNKNOWN