Vulnerability Monitor

The vendors, products, and vulnerabilities you care about

CVE-2018-7750

transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.

Published

2018-03-13T18:29:00.303

Last Modified

2024-11-21T04:12:39.650

Status

Modified

Source

[email protected]

Severity

CVSSv3.1: 9.8 (CRITICAL)

CVSSv2 Vector

AV:N/AC:L/Au:N/C:P/I:P/A:P

Access Vector: NETWORK
Access Complexity: LOW
Authentication: NONE
Confidentiality Impact: PARTIAL
Integrity Impact: PARTIAL
Availability Impact: PARTIAL

Exploitability Score

10.0

Impact Score

6.4

Weaknesses

Type: Primary
CWE-287

Affected Vendors & Products

Type	Vendor	Product	Version/Range	Vulnerable?
Application	paramiko	paramiko	< 1.17.6	Yes
Application	paramiko	paramiko	< 1.18.5	Yes
Application	paramiko	paramiko	< 2.0.8	Yes
Application	paramiko	paramiko	< 2.1.5	Yes
Application	paramiko	paramiko	< 2.2.3	Yes
Application	paramiko	paramiko	< 2.3.2	Yes
Application	paramiko	paramiko	2.4.0	Yes
Application	redhat	ansible_engine	2.0	Yes
Application	redhat	ansible_engine	2.4	Yes
Application	redhat	cloudforms	4.5	Yes
Application	redhat	cloudforms	4.6	Yes
Application	redhat	virtualization	4.1	Yes
Operating System	redhat	enterprise_linux_desktop	6.0	Yes
Operating System	redhat	enterprise_linux_server	6.0	Yes
Operating System	redhat	enterprise_linux_server	7.0	Yes
Operating System	redhat	enterprise_linux_server_aus	6.4	Yes
Operating System	redhat	enterprise_linux_server_aus	6.5	Yes
Operating System	redhat	enterprise_linux_server_aus	6.6	Yes
Operating System	redhat	enterprise_linux_server_eus	6.7	Yes
Operating System	redhat	enterprise_linux_server_tus	6.6	Yes
Operating System	redhat	enterprise_linux_workstation	6.0	Yes
Operating System	debian	debian_linux	8.0	Yes
Operating System	debian	debian_linux	9.0	Yes

References

http://www.securityfocus.com/bid/103713 Third Party Advisory, VDB Entry ([email protected])
https://access.redhat.com/errata/RHSA-2018:0591 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:0646 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:1124 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:1125 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:1213 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:1274 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:1328 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:1525 Third Party Advisory ([email protected])
https://access.redhat.com/errata/RHSA-2018:1972 Third Party Advisory ([email protected])
https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst Third Party Advisory ([email protected])
https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516 Patch, Third Party Advisory ([email protected])
https://github.com/paramiko/paramiko/issues/1175 Issue Tracking, Third Party Advisory ([email protected])
https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html Mailing List, Third Party Advisory ([email protected])
https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html Mailing List, Third Party Advisory ([email protected])
https://usn.ubuntu.com/3603-1/ Third Party Advisory ([email protected])
https://usn.ubuntu.com/3603-2/ Third Party Advisory ([email protected])
https://www.exploit-db.com/exploits/45712/ Exploit, Third Party Advisory, VDB Entry ([email protected])
http://www.securityfocus.com/bid/103713 Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:0591 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:0646 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:1124 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:1125 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:1213 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:1274 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:1328 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:1525 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://access.redhat.com/errata/RHSA-2018:1972 Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516 Patch, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://github.com/paramiko/paramiko/issues/1175 Issue Tracking, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html Mailing List, Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/3603-1/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://usn.ubuntu.com/3603-2/ Third Party Advisory (af854a3a-2127-422b-91ae-364da2661108)
https://www.exploit-db.com/exploits/45712/ Exploit, Third Party Advisory, VDB Entry (af854a3a-2127-422b-91ae-364da2661108)