CVE-2023-46446

Name of the Vulnerable Software and Affected Versions AsyncSSH versions 2.14.0 and earlier

Description The issue in AsyncSSH allows attackers to control the remote end of an SSH client session via packet injection/removal and shell emulation, also known as a "Rogue Session Attack." This can lead to a complete break of the confidentiality and integrity of the secure channel, providing a strong vector for a targeted phishing campaign against the user. The attacker can inject a chosen authentication request before the client's NewKeys, allowing them to log the client into the attacker's account without the client being able to detect this. The attacker receives all keyboard input by the user, completely controls the terminal output of the user's session, can send and receive data to/from forwarded network ports, and is able to create signatures with a forwarded SSH Agent, if any.

Recommendations For AsyncSSH versions 2.14.0 and earlier, update to version 2.14.1 or later to resolve the issue. As a temporary workaround, consider restricting access to the SSH server or implementing additional authentication mechanisms to minimize the risk of exploitation.