ghsa-232r-66cg-79px
Vulnerability from github
Published
2018-07-12 20:29
Modified
2023-08-07 15:45
Severity
Summary
Paramiko not properly checking authentication before processing other requests
Details
transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.
{ "affected": [ { "package": { "ecosystem": "PyPI", "name": "paramiko" }, "ranges": [ { "events": [ { "introduced": "2.0.0" }, { "fixed": "2.0.8" } ], "type": "ECOSYSTEM" } ] }, { "package": { "ecosystem": "PyPI", "name": "paramiko" }, "ranges": [ { "events": [ { "introduced": "2.1.0" }, { "fixed": "2.1.5" } ], "type": "ECOSYSTEM" } ] }, { "package": { "ecosystem": "PyPI", "name": "paramiko" }, "ranges": [ { "events": [ { "introduced": "2.2.0" }, { "fixed": "2.2.3" } ], "type": "ECOSYSTEM" } ] }, { "package": { "ecosystem": "PyPI", "name": "paramiko" }, "ranges": [ { "events": [ { "introduced": "2.3.0" }, { "fixed": "2.3.2" } ], "type": "ECOSYSTEM" } ] }, { "package": { "ecosystem": "PyPI", "name": "paramiko" }, "ranges": [ { "events": [ { "introduced": "2.4.0" }, { "fixed": "2.4.1" } ], "type": "ECOSYSTEM" } ], "versions": [ "2.4.0" ] }, { "package": { "ecosystem": "PyPI", "name": "paramiko" }, "ranges": [ { "events": [ { "introduced": "1.18.0" }, { "fixed": "1.18.5" } ], "type": "ECOSYSTEM" } ] }, { "package": { "ecosystem": "PyPI", "name": "paramiko" }, "ranges": [ { "events": [ { "introduced": "0" }, { "fixed": "1.17.6" } ], "type": "ECOSYSTEM" } ] } ], "aliases": [ "CVE-2018-7750" ], "database_specific": { "cwe_ids": [ "CWE-287" ], "github_reviewed": true, "github_reviewed_at": "2020-06-16T20:50:58Z", "nvd_published_at": "2018-03-13T18:29:00Z", "severity": "CRITICAL" }, "details": "transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.", "id": "GHSA-232r-66cg-79px", "modified": "2023-08-07T15:45:44Z", "published": "2018-07-12T20:29:30Z", "references": [ { "type": "ADVISORY", "url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7750" }, { "type": "WEB", "url": "https://github.com/paramiko/paramiko/issues/1175" }, { "type": "WEB", "url": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516" }, { "type": "WEB", "url": "https://github.com/paramiko/paramiko/commit/e9dfd854bdaf8af15d7834f7502a0451d217bb8c" }, { "type": "WEB", "url": "https://www.exploit-db.com/exploits/45712" }, { "type": "WEB", "url": "https://web.archive.org/web/20190831123128/http://www.securityfocus.com/bid/103713" }, { "type": "WEB", "url": "https://usn.ubuntu.com/3603-2" }, { "type": "WEB", "url": "https://usn.ubuntu.com/3603-1" }, { "type": "WEB", "url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html" }, { "type": "WEB", "url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html" }, { "type": "WEB", "url": "https://github.com/paramiko/paramiko/blob/e861c7697622774071ce73b46ffe8817eacdedfa/sites/www/changelog.rst?plain=1#L759-L763" }, { "type": "PACKAGE", "url": "https://github.com/paramiko/paramiko" }, { "type": "ADVISORY", "url": "https://github.com/advisories/GHSA-232r-66cg-79px" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2018:1972" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2018:1525" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2018:1328" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2018:1274" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2018:1213" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2018:1125" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2018:1124" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2018:0646" }, { "type": "WEB", "url": "https://access.redhat.com/errata/RHSA-2018:0591" } ], "schema_version": "1.4.0", "severity": [ { "score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H", "type": "CVSS_V3" } ], "summary": "Paramiko not properly checking authentication before processing other requests" }
Loading...