A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and 0.8.4. A malicious client could create channels without first performing authentication, resulting in unauthorized access.
Published 2018-10-17 12:29:01
Updated 2019-10-09 23:33:16
Source Red Hat, Inc.
View at NVD,   CVE.org
Vulnerability category: BypassGain privilege

Products affected by CVE-2018-10933

Threat overview for CVE-2018-10933

Top countries where our scanners detected CVE-2018-10933
Top open port discovered on systems with this issue 53
IPs affected by CVE-2018-10933 116,443
Threat actors abusing to this issue? Yes
Find out if you* are affected by CVE-2018-10933!
*Directly or indirectly through your vendors, service providers and 3rd parties. Powered by attack surface intelligence from SecurityScorecard.

Exploit prediction scoring system (EPSS) score for CVE-2018-10933

79.58%
Probability of exploitation activity in the next 30 days EPSS Score History
~ 99 %
Percentile, the proportion of vulnerabilities that are scored at or less

Metasploit modules for CVE-2018-10933

  • libssh Authentication Bypass Scanner
    Disclosure Date: 2018-10-16
    First seen: 2020-04-26
    auxiliary/scanner/ssh/libssh_auth_bypass
    This module exploits an authentication bypass in libssh server code where a USERAUTH_SUCCESS message is sent in place of the expected USERAUTH_REQUEST message. libssh versions 0.6.0 through 0.7.5 and 0.8.0 through 0.8.3 are vulnerable. Note that this module'

CVSS scores for CVE-2018-10933

Base Score Base Severity CVSS Vector Exploitability Score Impact Score Score Source First Seen
6.4
MEDIUM AV:N/AC:L/Au:N/C:P/I:P/A:N
10.0
4.9
NIST
9.1
CRITICAL CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
3.9
5.2
NIST
9.1
CRITICAL CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
3.9
5.2
Red Hat, Inc.

CWE ids for CVE-2018-10933

  • When an actor claims to have a given identity, the product does not prove or insufficiently proves that the claim is correct.
    Assigned by: nvd@nist.gov (Primary)
  • Assigned by: secalert@redhat.com (Secondary)

References for CVE-2018-10933

Jump to
This web site uses cookies for managing your session, storing preferences, website analytics and additional purposes described in our privacy policy.
By using this web site you are agreeing to CVEdetails.com terms of use!