PT-2023-7884 · Openssh+11 · Openssh+11

Fabian Bäumer

Publicado

2023-12-18

Atualizado

2026-05-12

CVE-2023-51385

CVSS v2.0

7.1

Alta

Vetor

AV:N/AC:H/Au:N/C:C/I:C/A:N

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 9.6

Description The issue is related to OS command injection in OpenSSH, which might occur if a user name or host name has shell metacharacters and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name. The estimated number of potentially affected devices worldwide is around 116,742,290, mainly distributed in the United States, China, and other countries.

Recommendations Update to OpenSSH 9.6p1 to resolve the issue. As a temporary workaround, consider disabling the use of ProxyCommand until a patch is available. Restrict access to the vulnerable module to minimize the risk of exploitation. Avoid using the ProxyCommand directive in the OpenSSH configuration until the issue is resolved.

Exploit

Correção

DoS

Improper Neutralization

OS Command Injection

Special Elements Injection

Encontrou algum problema na descrição? Tem algo a acrescentar? Fique à vontade para nos escrever 👾

dbugs@ptsecurity.com

Enumeração de Fraquezas

CWE-707CWE-78CWE-74CWE-222CWE-320

Identificadores relacionados

ALSA-2024:0606

ALSA-2024:1130

ALSA-2024_0606

ALSA-2024_1130

ALSA-2024_1150

ALSA-2025_16880

ALT-PU-2024-1046

ALT-PU-2024-12010

ALT-PU-2024-12012

ALT-PU-2024-1364

ALT-PU-2024-17672

ALT-PU-2024-7257

ALT-PU-2024-7261

ALT-PU-2024-7269

ALT-PU-2024-7315

ALT-PU-2024-7319

ALT-PU-2024-7508

ALT-PU-2024-7510

ALT-PU-2024-9513

AZL-32203

AZL-35082

BDU:2023-08853

BDU:2023-08955

BDU:2023-08956

CESA-2024_0606

CVE-2023-51385

DLA-3694-1

DSA-5586-1

ELSA-2024-0606

ELSA-2024-1130

ELSA-2024-12164

MGASA-2024-0010

OESA-2023-1975

OESA-2023-1976

OESA-2023-1977

OESA-2023-1978

OESA-2023-1979

OESA-2023-1980

OPENSUSE-SU-2024:14113-1

RHSA-2024:0429

RHSA-2024:0455

RHSA-2024:0594

RHSA-2024:0606

RHSA-2024:1130

RHSA-2024_0606

RHSA-2024_1130

RHSA-2026:1790

RHSA-2026:22329

RLSA-2024:0606

ROSA-SA-2024-2340

ROSA-SA-2025-2662

SUSE-SU-2024:0596-1

SUSE-SU-2024:0603-1

SUSE-SU-2024:0604-1

SUSE-SU-2024:2393-1

SUSE-SU-2024_0596-1

SUSE-SU-2024_0603-1

SUSE-SU-2024_0604-1

SUSE-SU-2024_2393-1

SUSE-SU-2025:20009-1

USN-6560-2

USN-6560-3

USN-6565-1

Produtos afetados

Alt Linux

Almalinux

Astra Linux

Centos

Ibm Aix

Linuxmint

Apple Macos

Openssh

Red Hat

Red Os

Suse

Ubuntu

PT-2023-7884 · Openssh+11 · Openssh+11

CVE-2023-51385

Enumeração de Fraquezas

Identificadores relacionados

Produtos afetados

Referências · 204