PT-2022-10511 · Dropbear+3 · Dropbear+3

Manfred Kaiser

Published

2022-04-01

Updated

2025-05-15

CVE-2021-36369

CVSS v2.0

7.8

High

Vector

AV:N/AC:L/Au:N/C:N/I:C/A:N

Name of the Vulnerable Software and Affected Versions Dropbear versions through 2020.81

Description An issue in the client-side SSH code allows an SSH server to change the login process in its favor due to a non-RFC-compliant check of available authentication methods. This can bypass additional security measures such as FIDO2 tokens or SSH-Askpass, enabling an attacker to abuse a forwarded agent for logging on to another server unnoticed.

Recommendations For Dropbear versions through 2020.81, update to a version later than 2020.81 to resolve the issue.

Fix

Improper Authentication

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-287

Related Identifiers

ALT-PU-2022-2113

ALT-PU-2024-4252

ALT-PU-2024-7377

BDU:2025-13194

CVE-2021-36369

DLA-3187-1

MGASA-2022-0436

USN-7292-1

Affected Products

Alt Linux

Dropbear

Linuxmint

Ubuntu

PT-2022-10511 · Dropbear+3 · Dropbear+3

CVE-2021-36369

Weakness Enumeration

Related Identifiers

Affected Products

References · 20