CVE-2023-48795

CVSS v2.0

7.1

High

Vector

AV:N/AC:H/Au:N/C:C/I:C/A:N

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 9.6 libssh2 versions through 1.11.0 Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT Dropbear through 2022.83 Ssh before 5.1.1 in Erlang/OTP PuTTY before 0.80 AsyncSSH before 2.14.2 golang.org/x/crypto before 0.17.0 libssh before 0.10.6 Thorn Tech SFTP Gateway before 3.4.6 Tera Term before 5.1 Paramiko before 3.4.0 jsch before 0.2.15 SFTPGo before 2.5.6 Netgate pfSense Plus through 23.09.1 Netgate pfSense CE through 2.7.2 HPN-SSH through 18.2.0 ProFTPD before 1.3.8b ORYX CycloneSSH before 2.3.4 NetSarang XShell 7 before Build 0144 CrushFTP before 10.6.0 ConnectBot SSH library before 2.2.22 Apache MINA sshd through 2.11.0 sshj through 0.37.0 TinySSH through 20230101 trilead-ssh2 6401 LANCOM LCOS and LANconfig FileZilla before 3.66.4 Nova before 11.8 PKIX-SSH before 14.4 SecureCRT before 9.4.3 Transmit5 before 5.10.4 Win32-OpenSSH before 9.5.0.0p1-Beta WinSCP before 6.2.2 Bitvise SSH Server before 9.32 Bitvise SSH Client before 9.33 KiTTY through 0.76.1.13 the net-ssh gem 7.2.0 for Ruby the mscdex ssh2 module before 1.15.0 for Node.js the thrussh library before 0.35.1 for Rust the Russh crate before 0.40.2 for Rust

Description The SSH transport protocol with certain OpenSSH extensions is vulnerable to a prefix truncation attack, known as the Terrapin attack. This attack allows a man-in-the-middle attacker to strip an arbitrary number of messages right after the initial key exchange, breaking SSH extension negotiation and downgrading connection security. The attack works by injecting arbitrary SSH MSG IGNORE messages during the initial key exchange and removing the same number of messages just after the initial key exchange has concluded. This is possible due to missing authentication of the excess SSH MSG IGNORE messages and the fact that the implicit sequence numbers used within the SSH protocol are only checked after the initial key exchange.

Recommendations To mitigate this vulnerability, update to OpenSSH 9.6 or later, and consider implementing "strict kex" to alter the SSH handshake and prevent man-in-the-middle attacks. Additionally, temporarily disable the affected algorithms and use unaffected alternatives like AES-GCM until patches are available. For each affected version, apply the corresponding update or patch:

OpenSSH: Update to version 9.6 or later.
libssh2: Update to version 1.11.1 or later.
Maverick Synergy Java SSH API: Update to version 3.1.0-SNAPSHOT or later.
Dropbear: Update to version 2022.84 or later.
Ssh in Erlang/OTP: Update to version 5.1.1 or later.
PuTTY: Update to version 0.80 or later.
AsyncSSH: Update to version 2.14.2 or later.
golang.org/x/crypto: Update to version 0.17.0 or later.
libssh: Update to version 0.10.6 or later.
Thorn Tech SFTP Gateway: Update to version 3.4.6 or later.
Tera Term: Update to version 5.1 or later.
Paramiko: Update to version 3.4.0 or later.
jsch: Update to version 0.2.15 or later.
SFTPGo: Update to version 2.5.6 or later.
Netgate pfSense Plus: Update to version 23.09.2 or later.
Netgate pfSense CE: Update to version 2.7.3 or later.
HPN-SSH: Update to version 18.2.1 or later.
ProFTPD: Update to version 1.3.8b or later.
ORYX CycloneSSH: Update to version 2.3.4 or later.
NetSarang XShell 7: Update to Build 0144 or later.
CrushFTP: Update to version 10.6.0 or later.
ConnectBot SSH library: Update to version 2.2.22 or later.
Apache MINA sshd: Update to version 2.11.1 or later.
sshj: Update to version 0.37.1 or later.
TinySSH: Update to version 20230102 or later.
trilead-ssh2: Update to version 6402 or later.
LANCOM LCOS and LANconfig: Apply the latest security patches.
FileZilla: Update to version 3.66.4 or later.
Nova: Update to version 11.8 or later.
PKIX-SSH: Update to version 14.4 or later.
SecureCRT: Update to version 9.4.3 or later.
Transmit5: Update to version 5.10.4 or later.
Win32-OpenSSH: Update to version 9.5.0.0p1-Beta or later.
WinSCP: Update to version 6.2.2 or later.
Bitvise SSH Server: Update to version 9.32 or later.
Bitvise SSH Client: Update to version 9.33 or later.
KiTTY: Update to version 0.76.1.14 or later.
the net-ssh gem: Update to version 7.2.1 or later for Ruby.
the mscdex ssh2 module: Update to version 1.15.0 or later for Node.js.
the thrussh library: Update to version 0.35.1 or later for Rust.
the Russh crate: Update to version 0.40.2 or later for Rust.

Exploit

Fix

Insufficient Verification of Data Authenticity

Found an issue in the description? Have something to add? Feel free to write us 👾

dbugs@ptsecurity.com

Weakness Enumeration

CWE-222CWE-345CWE-354

Related Identifiers

ALSA-2024:0606

ALSA-2024:0628

ALSA-2024:1130

ALSA-2024:1150

ALT-PU-2024-1001

ALT-PU-2024-1046

ALT-PU-2024-1096

ALT-PU-2024-1190

ALT-PU-2024-12010

ALT-PU-2024-12012

ALT-PU-2024-12202

ALT-PU-2024-12410

ALT-PU-2024-1247

ALT-PU-2024-1249

ALT-PU-2024-1251

ALT-PU-2024-13209

ALT-PU-2024-1430

ALT-PU-2024-14318

ALT-PU-2024-15421

ALT-PU-2024-1561

ALT-PU-2024-1563

ALT-PU-2024-1569

ALT-PU-2024-1613

ALT-PU-2024-1622

ALT-PU-2024-17672

ALT-PU-2024-1940

ALT-PU-2024-1973

ALT-PU-2024-2064

ALT-PU-2024-2108

ALT-PU-2024-3921

ALT-PU-2024-4039

ALT-PU-2024-4077

ALT-PU-2024-4252

ALT-PU-2024-4467

ALT-PU-2024-6830

ALT-PU-2024-7269

ALT-PU-2024-7377

ALT-PU-2024-8461

ALT-PU-2024-8463

ALT-PU-2024-8542

ALT-PU-2024-8544

ALT-PU-2024-8807

ALT-PU-2024-8809

ALT-PU-2024-9396

ALT-PU-2024-9408

ALT-PU-2024-9513

ALT-PU-2024-9607

ALT-PU-2024-9848

ALT-PU-2024-9897

ALT-PU-2025-13603

ALT-PU-2025-2804

AZL-32195

AZL-32196

AZL-32200

AZL-32201

AZL-32202

AZL-32204

AZL-32221

AZL-32222

AZL-32223

AZL-32224

AZL-32225

AZL-32229

AZL-32259

AZL-32280

AZL-34581

AZL-34589

AZL-34673

AZL-34901

AZL-34906

AZL-34941

AZL-34944

AZL-35030

AZL-35099

AZL-35435

AZL-35443

AZL-36944

AZL-36983

AZL-37154

AZL-43762

AZL-43951

AZL-45123

AZL-45303

AZL-61246

BDU:2023-08853

CESA-2024_0606

CESA-2024_0628

CESA-2024_2988

CVE-2023-48795

DLA-3694-1

DLA-3718-1

DLA-3719-1

DLA-3730-1

DLA-3794-1

DLA-3899-1

DLA-3975-1

DLA-4132-1

DSA-5586-1

DSA-5588-1

DSA-5591-1

DSA-5599-1

DSA-5600-1

DSA-5601-1

DSA-5750-1

DSA-5906-1

FREEBSD-SA-23_19

GHSA-45X7-PX36-X8W8

GO-2023-2402

INFSA-2024_2988

JLSEC-2025-95

MGASA-2023-0356

MGASA-2023-0357

MGASA-2024-0002

MGASA-2024-0003

MGASA-2024-0004

MGASA-2024-0010

MGASA-2024-0015

MGASA-2024-0034

MGASA-2026-0066

OESA-2023-1977

OESA-2023-1978

OESA-2023-1979

OESA-2024-1027

OESA-2024-1048

OESA-2024-1059

OESA-2024-1060

OESA-2024-1061

OESA-2024-1065

OESA-2024-1066

OESA-2024-1081

OESA-2024-1082

OESA-2024-1089

OESA-2024-1101

OESA-2024-1104

OESA-2024-1122

OESA-2024-1406

OESA-2024-1407

OESA-2024-1408

OESA-2024-1461

OESA-2025-1059

OPENSUSE-SU-2023:0411-1

OPENSUSE-SU-2023:0421-1

OPENSUSE-SU-2023_4902-1

OPENSUSE-SU-2024:0005-1

OPENSUSE-SU-2024:0008-1

OPENSUSE-SU-2024:0036-1

OPENSUSE-SU-2024:0135-1

OPENSUSE-SU-2024:13515-1

OPENSUSE-SU-2024:13517-1

OPENSUSE-SU-2024:13518-1

OPENSUSE-SU-2024:13522-1

OPENSUSE-SU-2024:13523-1

OPENSUSE-SU-2024:13530-1

OPENSUSE-SU-2024:13539-1

OPENSUSE-SU-2024:13565-1

OPENSUSE-SU-2024:13569-1

OPENSUSE-SU-2024:13580-1

OPENSUSE-SU-2024:13592-1

OPENSUSE-SU-2024:13608-1

OPENSUSE-SU-2024:13628-1

OPENSUSE-SU-2024:13638-1

OPENSUSE-SU-2024:13646-1

OPENSUSE-SU-2024:13652-1

OPENSUSE-SU-2024:13772-1

OPENSUSE-SU-2024:13776-1

OPENSUSE-SU-2024:13812-1

OPENSUSE-SU-2024:13834-1

OPENSUSE-SU-2024:13835-1

OPENSUSE-SU-2024:13836-1

OPENSUSE-SU-2024:13979-1

OPENSUSE-SU-2024_0006-1

OPENSUSE-SU-2024_0035-1

OPENSUSE-SU-2024_0224-1

OPENSUSE-SU-2024_0558-1

OPENSUSE-SU-2024_3656-1

OPENSUSE-SU-2025:0003-1

OPENSUSE-SU-2025:15487-1

OPENSUSE-SU-2025:15740-1

OPENSUSE-SU-2025:20177-1

RHSA-2023:7201

RHSA-2024:0429

RHSA-2024:0455

RHSA-2024:0499

RHSA-2024:0538

RHSA-2024:0594

RHSA-2024:0606

RHSA-2024:0625

RHSA-2024:0628

RHSA-2024:0880

RHSA-2024:1130

RHSA-2024:1150

RHSA-2024:1192

RHSA-2024:1193

RHSA-2024:1196

RHSA-2024:1674

RHSA-2024:1675

RHSA-2024:1676

RHSA-2024:2735

RHSA-2024:2768

RHSA-2024:2988

RHSA-2024:3634

RHSA-2024:3635

RHSA-2024:3636

RHSA-2024:3918

RHSA-2024:4597

RHSA-2024_0606

RHSA-2024_0628

RHSA-2024_1130

RHSA-2024_1150

RHSA-2024_2988

RHSA-2025:4664

RLSA-2024:0606

RLSA-2024:0628

ROSA-SA-2024-2382

ROSA-SA-2025-2662

ROSA-SA-2025-2674

ROSA-SA-2025-2675

SUSE-SU-2023:4902-1

SUSE-SU-2023:4903-1

SUSE-SU-2023:4904-1

SUSE-SU-2023:4905-1

SUSE-SU-2023:4946-1

SUSE-SU-2023_4902-1

SUSE-SU-2023_4903-1

SUSE-SU-2023_4904-1

SUSE-SU-2023_4905-1

SUSE-SU-2023_4946-1

SUSE-SU-2024:0006-1

SUSE-SU-2024:0035-1

SUSE-SU-2024:0140-1

SUSE-SU-2024:0210-1

SUSE-SU-2024:0224-1

SUSE-SU-2024:0327-1

SUSE-SU-2024:0430-1

SUSE-SU-2024:0460-1

SUSE-SU-2024:0525-1

SUSE-SU-2024:0539-1

SUSE-SU-2024:0543-1

SUSE-SU-2024:0558-1

SUSE-SU-2024:0972-1

SUSE-SU-2024:0974-1

SUSE-SU-2024:3656-1

SUSE-SU-2024_0006-1

SUSE-SU-2024_0035-1

SUSE-SU-2024_0210-1

SUSE-SU-2024_0327-1

SUSE-SU-2024_0430-1

SUSE-SU-2024_0460-1

SUSE-SU-2024_0543-1

SUSE-SU-2024_0558-1

SUSE-SU-2025:20009-1

USN-6560-1

USN-6560-2

USN-6561-1

USN-6585-1

USN-6589-1

USN-6598-1

USN-6738-1

USN-7051-1

USN-7292-1

USN-7297-1

Affected Products

Alt Linux

Almalinux

Apache Mina Sshd

Astra Linux

Bitvise Ssh Client

Bitvise Ssh Server

Centos

Debian

Erlang/Otp

Freebsd

Ibm Aix

Keycloak

Lancom Lcos/Lanconfig

Linuxmint

Apple Macos

Maverick Synergy Java Ssh Api

Netsarang Xshell 7

Netgate Pfsense Ce

Netgate Pfsense Plus

Oryx Cyclonessh

Red Hat

Red Os

Rocky Linux

Securecrt

Suse

Tera Term

Thorn Tech Sftp Gateway

Transmit5

Ubuntu

Golang.Org/X/Crypto

CVE-2023-48795

Weakness Enumeration

Related Identifiers

Affected Products

References · 693