ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9.
References
Link | Resource |
---|---|
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/AN2UDTXEUSKFIOIYMV6JNI5VSBMYZOFT/ | |
https://security.gentoo.org/glsa/202307-01 | Third Party Advisory |
https://security.netapp.com/advisory/ntap-20230413-0008/ | Third Party Advisory |
https://www.debian.org/security/2023/dsa-5586 | |
https://www.openwall.com/lists/oss-security/2023/03/15/8 | Mailing List Release Notes |
Configurations
History
12 Feb 2024, 03:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
22 Dec 2023, 13:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
21 Jul 2023, 19:21
Type | Values Removed | Values Added |
---|---|---|
References | (GENTOO) https://security.gentoo.org/glsa/202307-01 - Third Party Advisory |
20 Jul 2023, 04:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
26 Apr 2023, 19:17
Type | Values Removed | Values Added |
---|---|---|
First Time |
Netapp solidfire Element Os
Netapp Netapp brocade Fabric Operating System Netapp hci Bootstrap Os |
|
References | (CONFIRM) https://security.netapp.com/advisory/ntap-20230413-0008/ - Third Party Advisory | |
CPE | cpe:2.3:o:netapp:brocade_fabric_operating_system:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:solidfire_element_os:-:*:*:*:*:*:*:* cpe:2.3:o:netapp:hci_bootstrap_os:-:*:*:*:*:*:*:* |
13 Apr 2023, 17:15
Type | Values Removed | Values Added |
---|---|---|
References |
|
12 Apr 2023, 15:15
Type | Values Removed | Values Added |
---|---|---|
Summary | ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected version is 8.9. |
23 Mar 2023, 14:07
Type | Values Removed | Values Added |
---|---|---|
First Time |
Openbsd openssh
Openbsd |
|
CVSS |
v2 : v3 : |
v2 : unknown
v3 : 9.8 |
References | (MISC) https://www.openwall.com/lists/oss-security/2023/03/15/8 - Mailing List, Release Notes | |
CWE | NVD-CWE-noinfo | |
CPE | cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:* |
17 Mar 2023, 04:15
Type | Values Removed | Values Added |
---|---|---|
New CVE |
Information
Published : 2023-03-17 04:15
Updated : 2024-02-12 03:15
NVD link : CVE-2023-28531
Mitre link : CVE-2023-28531
CVE.ORG link : CVE-2023-28531
JSON object : View
Products Affected
openbsd
- openssh
netapp
- hci_bootstrap_os
- brocade_fabric_operating_system
- solidfire_element_os
CWE