Vulnerability Details : CVE-2017-3204
The Go SSH library (x/crypto/ssh) by default does not verify host keys, facilitating man-in-the-middle attacks. Default behavior changed in commit e4e2799 to require explicitly registering a hostkey verification mechanism.
Products affected by CVE-2017-3204
- cpe:2.3:a:golang:crypto:*:*:*:*:*:*:*:*
Exploit prediction scoring system (EPSS) score for CVE-2017-3204
0.23%
Probability of exploitation activity in the next 30 days
EPSS Score History
~ 60 %
Percentile, the proportion of vulnerabilities that are scored at or less
CVSS scores for CVE-2017-3204
Base Score | Base Severity | CVSS Vector | Exploitability Score | Impact Score | Score Source | First Seen |
---|---|---|---|---|---|---|
6.8
|
MEDIUM | AV:N/AC:M/Au:N/C:P/I:P/A:P |
8.6
|
6.4
|
NIST | |
8.1
|
HIGH | CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H |
2.2
|
5.9
|
NIST |
CWE ids for CVE-2017-3204
-
Assigned by: cret@cert.org (Secondary)
References for CVE-2017-3204
-
https://github.com/golang/go/issues/19767
x/crypto/ssh: make ClientConfig HostKeyCallback non-permissive by default · Issue #19767 · golang/go · GitHubThird Party Advisory
-
https://godoc.org/golang.org/x/crypto/ssh
ssh - GoDocVendor Advisory
-
https://bridge.grumpy-troll.org/2017/04/golang-ssh-security/
Golang SSH Security : The Grumpy TrollThird Party Advisory
-
http://www.securityfocus.com/bid/97481
Golang Go SSH Library CVE-2017-3204 Security Bypass VulnerabilityThird Party Advisory;VDB Entry
-
https://github.com/golang/crypto/commit/e4e2799dd7aab89f583e1d898300d96367750991
ssh: require host key checking in the ClientConfig · golang/crypto@e4e2799 · GitHubPatch;Third Party Advisory
Jump to