ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an agent to an attacker-controlled host.
2021-03-05T21:15:13.200
2024-11-21T05:59:01.940
Modified
CVSSv3.1: 7.1 (HIGH)
AV:N/AC:H/Au:S/C:P/I:P/A:P
3.9
6.4
Type | Vendor | Product | Version/Range | Vulnerable? |
---|---|---|---|---|
Application | openbsd | openssh | < 8.5 | Yes |
Operating System | fedoraproject | fedora | 33 | Yes |
Operating System | fedoraproject | fedora | 34 | Yes |
Application | netapp | cloud_backup | - | Yes |
Application | netapp | hci_management_node | - | Yes |
Application | netapp | solidfire | - | Yes |
Operating System | netapp | hci_compute_node_firmware | - | Yes |
Hardware | netapp | hci_compute_node | - | No |
Operating System | netapp | hci_storage_node_firmware | - | Yes |
Hardware | netapp | hci_storage_node | - | No |
Application | oracle | communications_offline_mediation_controller | 12.0.0.3.0 | Yes |
Operating System | oracle | zfs_storage_appliance | 8.8 | Yes |