PT-2022-19493 · Ssh.Net · Ssh.Net

Yaumn-Synacktiv

Published

2022-05-31

Updated

2022-06-14

CVE-2022-29245

CVSS v3.1

6.5

Medium

Vector

AV:N/AC:L/PR:N/UI:R/S:U/C:H/I:N/A:N

Name of the Vulnerable Software and Affected Versions SSH.NET versions 2020.0.0 through 2020.0.1

Description The issue arises during an X25519 key exchange, where the client's private key is generated with System.Random, which is not a cryptographically secure random number generator. This allows an attacker who can eavesdrop on the communications to decrypt them.

Recommendations For versions 2020.0.0 and 2020.0.1, update to version 2020.0.2 to resolve the issue. As a temporary workaround, consider disabling support for curve25519-sha256 and curve25519-sha256@libssh.org key exchange algorithms.

Exploit

Fix

Use of Insufficiently Random Values

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-338CWE-330

Related Identifiers

CVE-2022-29245

GHSA-72P8-V4HG-V45P

Affected Products

Ssh.Net

PT-2022-19493 · Ssh.Net · Ssh.Net

CVE-2022-29245

Weakness Enumeration

Related Identifiers

Affected Products

References · 12