CVE-2017-18594

nse_libssh2.cc in Nmap 7.70 is subject to a denial of service condition due to a double free when an SSH connection fails, as demonstrated by a leading \n character to ssh-brute.nse or ssh-auth-methods.nse.
ProviderTypeBase ScoreAtk. VectorAtk. ComplexityPriv. RequiredVector
NISTNIST
7.5 HIGH
NETWORK
LOW
NONE
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H
mitreCNA
---
---
CVEADP
---
---
Base Score
CVSS 3.x
EPSS Score
Percentile: 78%
VendorProductVersion
nmapnmap
7.70
𝑥
= Vulnerable software versions
Debian logo
Debian Releases
Debian Product
Codename
nmap
bullseye
7.91+dfsg1+really7.80+dfsg1-2
fixed
bookworm
7.93+dfsg1-1
fixed
sid
7.94+git20230807.3be01efb1+dfsg-4
fixed
trixie
7.94+git20230807.3be01efb1+dfsg-4
fixed
Ubuntu logo
Ubuntu Releases
Ubuntu Product
Codename
nmap
noble
not-affected
mantic
not-affected
lunar
not-affected
kinetic
not-affected
jammy
not-affected
impish
not-affected
hirsute
not-affected
groovy
not-affected
focal
not-affected
eoan
not-affected
disco
ignored
bionic
needs-triage
xenial
needs-triage
trusty
needs-triage
Common Weakness Enumeration
References
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00073.html
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00075.html
https://github.com/AMatchandaHaystack/Research/blob/master/Nmap%26libsshDF
https://github.com/nmap/nmap/commit/350bbe0597d37ad67abe5fef8fba984707b4e9ad
https://github.com/nmap/nmap/issues/1077
https://github.com/nmap/nmap/issues/1227
https://seclists.org/nmap-announce/2019/0
https://seclists.org/nmap-dev/2018/q2/45
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00073.html
http://lists.opensuse.org/opensuse-security-announce/2019-09/msg00075.html
https://github.com/AMatchandaHaystack/Research/blob/master/Nmap%26libsshDF
https://github.com/nmap/nmap/commit/350bbe0597d37ad67abe5fef8fba984707b4e9ad
https://github.com/nmap/nmap/issues/1077
https://github.com/nmap/nmap/issues/1227
https://seclists.org/nmap-announce/2019/0
https://seclists.org/nmap-dev/2018/q2/45