National Cyber Warfare Foundation (NCWF)

OpenSSH Command Injection Vulnerability (CVE-2023-51385) Alert
0 user ratings		2023-12-27 17:14:26
milo
Blue Team (CND)
 - archive -- 

Overview Recently, NSFOCUS CERT detected that OpenSSH released a security update and fixed a command injection vulnerability caused by malicious shell characters (CVE-2023-51385), with a CVSS score of 9.8; Since there is no security filtering of username and hostname input represented by %h,%u in OpenSSH’s ProxyCommand command, command injection may occur if the username or […]


The post OpenSSH Command Injection Vulnerability (CVE-2023-51385) Alert appeared first on NSFOCUS, Inc., a global network and cyber security leader, protects enterprises and carriers from advanced cyber attacks..


The post OpenSSH Command Injection Vulnerability (CVE-2023-51385) Alert appeared first on Security Boulevard.



NSFOCUS

Source: Security Boulevard
Source Link: https://securityboulevard.com/2023/12/openssh-command-injection-vulnerability-cve-2023-51385-alert/

Comments
new comment
Nobody has commented yet. Will you be the first?
  
Forum
Blue Team (CND)


Copyright 2012 through 2026 - National Cyber Warfare Foundation - All rights reserved worldwide.