CVE-2023-51385
18.12.2023, 19:15
In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.
Affected Products (NVD)
| Vendor | Product | Version |
|---|---|---|
| openbsd | openssh | 𝑥 < 9.6 |
| debian | debian_linux | 10.0 |
| debian | debian_linux | 11.0 |
| debian | debian_linux | 12.0 |
𝑥
= Vulnerable software versions
Early Detection
Affected products identified ahead of NVD analysis through intelligence sources.
| Vendor | Product | Version | Source |
|---|---|---|---|
| Siemens | SIMATIC S7-1500 CPU 1518-4 PN/DP MFP | V3.1.5 ≤ 𝑥 < * | ADP |
| Siemens | SIMATIC S7-1500 CPU 1518-4 PN/DP MFP | V3.1.5 ≤ 𝑥 < * | ADP |
| Siemens | SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP | V3.1.5 ≤ 𝑥 < * | ADP |
| Siemens | SIMATIC S7-1500 CPU 1518F-4 PN/DP MFP | V3.1.5 ≤ 𝑥 < * | ADP |
| Siemens | SIPLUS S7-1500 CPU 1518-4 PN/DP MFP | V3.1.5 ≤ 𝑥 < * | ADP |
Debian Releases
Ubuntu Releases
Ubuntu Product | |||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| openssh |
| ||||||||||||||||||
| openssh-ssh1 |
|
Red Hat Enterprise Linux Releases
Red Hat Product | |||||||||||||||||||||||
|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|---|
| openssh |
| ||||||||||||||||||||||
| openssh-askpass |
| ||||||||||||||||||||||
| openssh-cavs |
| ||||||||||||||||||||||
| openssh-clients |
| ||||||||||||||||||||||
| openssh-keycat |
| ||||||||||||||||||||||
| openssh-ldap |
| ||||||||||||||||||||||
| openssh-server |
| ||||||||||||||||||||||
| pam |
|
Amazon Linux Releases
Amazon Package | |||||
|---|---|---|---|---|---|
| openssh |
| ||||
| openssh-askpass |
| ||||
| openssh-cavs |
| ||||
| openssh-clients |
| ||||
| openssh-clients-debuginfo |
| ||||
| openssh-debuginfo |
| ||||
| openssh-debugsource |
| ||||
| openssh-keycat |
| ||||
| openssh-keycat-debuginfo |
| ||||
| openssh-ldap |
| ||||
| openssh-server |
| ||||
| openssh-server-debuginfo |
| ||||
| openssh-server-sysvinit |
| ||||
| pam_ssh_agent_auth |
| ||||
| pam_ssh_agent_auth-debuginfo |
|
Azure Linux Releases
References