Vulnerability Details : CVE-2018-15473

OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.
Publish Date : 2018-08-17 Last Update Date : 2023-02-23

Collapse All Expand All Select Select&Copy	Scroll To Vendor Statements(0) Additional Vendor Data(0) OVAL Definitions(0) Vulnerable Products(0) # Of Vulns By Products References(0) Metasploit Modules(0)	Comments View User Comments Add Comment	External Links Secunia Advisories XForce Advisories Vulnerability Details at NVD Vulnerability Details at Mitre Nessus Plugins Linux Kernel Git Repository First CVSS Guide
Search Twitter Search YouTube Search Google

- CVSS Scores & Vulnerability Types

CVSS Score	5.0
Confidentiality Impact	Partial (There is considerable informational disclosure.)
Integrity Impact	None (There is no impact to the integrity of the system)
Availability Impact	None (There is no impact to the availability of the system.)
Access Complexity	Low (Specialized access conditions or extenuating circumstances do not exist. Very little knowledge or skill is required to exploit. )
Authentication	Not required (Authentication is not required to exploit the vulnerability.)
Gained Access	None
Vulnerability Type(s)
CWE ID	362

- Related OVAL Definitions

Title	Definition Id	Class	Family
RHSA-2019:0711: openssh security update (Low)	oval:com.redhat.rhsa:def:20190711		unix
RHSA-2019:2143: openssh security, bug fix, and enhancement update (Low)	oval:com.redhat.rhsa:def:20192143		unix

OVAL (Open Vulnerability and Assessment Language) definitions define exactly what should be done to verify a vulnerability or a missing patch. Check out the OVAL definitions if you want to learn what you should do to verify a vulnerability.

- Products Affected By CVE-2018-15473

#	Product Type	Vendor	Product	Version	Update	Edition	Language
1	OS	Canonical	Ubuntu Linux	14.04	*	*	*	Version Details Vulnerabilities
2	OS	Canonical	Ubuntu Linux	16.04	*	*	*	Version Details Vulnerabilities
3	OS	Canonical	Ubuntu Linux	18.04	*	*	*	Version Details Vulnerabilities
4	OS	Debian	Debian Linux	8.0	*	*	*	Version Details Vulnerabilities
5	OS	Debian	Debian Linux	9.0	*	*	*	Version Details Vulnerabilities
6	Application	Netapp	Aff Baseboard Management Controller	-	*	*	*	Version Details Vulnerabilities
7	Application	Netapp	Cloud Backup	-	*	*	*	Version Details Vulnerabilities
8	OS	Netapp	Clustered Data Ontap	-	*	*	*	Version Details Vulnerabilities
9	OS	Netapp	Data Ontap	-	*	*	*	Version Details Vulnerabilities
10	Application	Netapp	Data Ontap Edge	-	*	*	*	Version Details Vulnerabilities
11	Application	Netapp	Fas Baseboard Management Controller	-	*	*	*	Version Details Vulnerabilities
12	Application	Netapp	Oncommand Unified Manager	*	*	*	*	Version Details Vulnerabilities
13	Application	Netapp	Ontap Select Deploy	-	*	*	*	Version Details Vulnerabilities
14	Application	Netapp	Service Processor	-	*	*	*	Version Details Vulnerabilities
15	Application	Netapp	Steelstore Cloud Integrated Storage	-	*	*	*	Version Details Vulnerabilities
16	Application	Netapp	Virtual Storage Console	*	*	*	*	Version Details Vulnerabilities
17	Application	Openbsd	Openssh	*	*	*	*	Version Details Vulnerabilities
18	Application	Oracle	Sun Zfs Storage Appliance Kit	8.8.6	*	*	*	Version Details Vulnerabilities
19	OS	Redhat	Enterprise Linux Desktop	6.0	*	*	*	Version Details Vulnerabilities
20	OS	Redhat	Enterprise Linux Desktop	7.0	*	*	*	Version Details Vulnerabilities
21	OS	Redhat	Enterprise Linux Server	6.0	*	*	*	Version Details Vulnerabilities
22	OS	Redhat	Enterprise Linux Server	7.0	*	*	*	Version Details Vulnerabilities
23	OS	Redhat	Enterprise Linux Workstation	6.0	*	*	*	Version Details Vulnerabilities
24	OS	Redhat	Enterprise Linux Workstation	7.0	*	*	*	Version Details Vulnerabilities

- Number Of Affected Versions By Product

Vendor	Product	Vulnerable Versions
Canonical	Ubuntu Linux	3
Debian	Debian Linux	2
Netapp	Aff Baseboard Management Controller	1
Netapp	Cloud Backup	1
Netapp	Clustered Data Ontap	1
Netapp	Data Ontap	1
Netapp	Data Ontap Edge	1
Netapp	Fas Baseboard Management Controller	1
Netapp	Oncommand Unified Manager	1
Netapp	Ontap Select Deploy	1
Netapp	Service Processor	1
Netapp	Steelstore Cloud Integrated Storage	1
Netapp	Virtual Storage Console	1
Openbsd	Openssh	1
Oracle	Sun Zfs Storage Appliance Kit	1
Redhat	Enterprise Linux Desktop	2
Redhat	Enterprise Linux Server	2
Redhat	Enterprise Linux Workstation	2

- References For CVE-2018-15473

https://usn.ubuntu.com/3809-1/
UBUNTU USN-3809-1

https://www.exploit-db.com/exploits/45233/
EXPLOIT-DB 45233

https://access.redhat.com/errata/RHSA-2019:2143
REDHAT RHSA-2019:2143

http://www.openwall.com/lists/oss-security/2018/08/15/5

https://access.redhat.com/errata/RHSA-2019:0711
REDHAT RHSA-2019:0711

http://www.securityfocus.com/bid/105140
BID 105140 OpenSSH CVE-2018-15473 User Enumeration Vulnerability Release Date:2019-04-19

https://www.exploit-db.com/exploits/45939/
EXPLOIT-DB 45939

https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf CONFIRM

https://github.com/openbsd/src/commit/779974d35b4859c07bc3cb8a12c74b43b0a7d1e0

https://security.netapp.com/advisory/ntap-20181101-0001/ CONFIRM

http://www.securitytracker.com/id/1041487
SECTRACK 1041487

https://bugs.debian.org/906236

https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0011 CONFIRM

https://www.exploit-db.com/exploits/45210/
EXPLOIT-DB 45210

https://lists.debian.org/debian-lts-announce/2018/08/msg00022.html
MLIST [debian-lts-announce] 20180821 [SECURITY] [DLA-1474-1] openssh security update

https://www.oracle.com/security-alerts/cpujan2020.html

https://www.debian.org/security/2018/dsa-4280
DEBIAN DSA-4280

https://security.gentoo.org/glsa/201810-03
GENTOO GLSA-201810-03

- Vulnerability Conditions

Vulnerability is valid if product versions listed below are used 0
Oracle Sun Zfs Storage Appliance Kit 8.8.6 * * * Netapp Virtual Storage Console * * * * Netapp Oncommand Unified Manager * * * * Netapp Aff Baseboard Management Controller * * * Netapp Fas Baseboard Management Controller * * * Netapp Data Ontap * * * Netapp Service Processor * * * Netapp Clustered Data Ontap * * * Netapp Steelstore Cloud Integrated Storage * * * Netapp Ontap Select Deploy * * * Netapp Data Ontap Edge * * * Netapp Cloud Backup * * * Canonical Ubuntu Linux 18.04 * * * Canonical Ubuntu Linux 14.04 * * * Canonical Ubuntu Linux 16.04 * * * Redhat Enterprise Linux Workstation 6.0 * * * Redhat Enterprise Linux Server 6.0 * * * Redhat Enterprise Linux Desktop 6.0 * * * Redhat Enterprise Linux Server 7.0 * * * Redhat Enterprise Linux Workstation 7.0 * * * Redhat Enterprise Linux Desktop 7.0 * * * Debian Debian Linux 9.0 * * * Debian Debian Linux 8.0 * * * Openbsd Openssh * * * *	Netapp Cn1610 * * * Netapp Cn1610 Firmware * * * Netapp Storage Replication Adapter * * * * Netapp Vasa Provider * * * * Siemens Scalance X204rna * * * Siemens Scalance X204rna Firmware * * * *
Vulnerability is valid if product versions listed below are used 0
Oracle Sun Zfs Storage Appliance Kit 8.8.6 * * * Netapp Virtual Storage Console * * * * Netapp Oncommand Unified Manager * * * * Netapp Aff Baseboard Management Controller * * * Netapp Fas Baseboard Management Controller * * * Netapp Data Ontap * * * Netapp Service Processor * * * Netapp Clustered Data Ontap * * * Netapp Steelstore Cloud Integrated Storage * * * Netapp Ontap Select Deploy * * * Netapp Data Ontap Edge * * * Netapp Cloud Backup * * * Canonical Ubuntu Linux 18.04 * * * Canonical Ubuntu Linux 14.04 * * * Canonical Ubuntu Linux 16.04 * * * Redhat Enterprise Linux Workstation 6.0 * * * Redhat Enterprise Linux Server 6.0 * * * Redhat Enterprise Linux Desktop 6.0 * * * Redhat Enterprise Linux Server 7.0 * * * Redhat Enterprise Linux Workstation 7.0 * * * Redhat Enterprise Linux Desktop 7.0 * * * Debian Debian Linux 9.0 * * * Debian Debian Linux 8.0 * * * Openbsd Openssh * * * *	Netapp Cn1610 * * * Netapp Cn1610 Firmware * * * Netapp Storage Replication Adapter * * * * Netapp Vasa Provider * * * * Siemens Scalance X204rna * * * Siemens Scalance X204rna Firmware * * * *
Vulnerability is valid if product versions listed below are used 0
Oracle Sun Zfs Storage Appliance Kit 8.8.6 * * * Netapp Virtual Storage Console * * * * Netapp Oncommand Unified Manager * * * * Netapp Aff Baseboard Management Controller * * * Netapp Fas Baseboard Management Controller * * * Netapp Data Ontap * * * Netapp Service Processor * * * Netapp Clustered Data Ontap * * * Netapp Steelstore Cloud Integrated Storage * * * Netapp Ontap Select Deploy * * * Netapp Data Ontap Edge * * * Netapp Cloud Backup * * * Canonical Ubuntu Linux 18.04 * * * Canonical Ubuntu Linux 14.04 * * * Canonical Ubuntu Linux 16.04 * * * Redhat Enterprise Linux Workstation 6.0 * * * Redhat Enterprise Linux Server 6.0 * * * Redhat Enterprise Linux Desktop 6.0 * * * Redhat Enterprise Linux Server 7.0 * * * Redhat Enterprise Linux Workstation 7.0 * * * Redhat Enterprise Linux Desktop 7.0 * * * Debian Debian Linux 9.0 * * * Debian Debian Linux 8.0 * * * Openbsd Openssh * * * *	Netapp Cn1610 * * * Netapp Cn1610 Firmware * * * Netapp Storage Replication Adapter * * * * Netapp Vasa Provider * * * * Siemens Scalance X204rna * * * Siemens Scalance X204rna Firmware * * * *
Vulnerability is valid if product versions listed below are used 0
Oracle Sun Zfs Storage Appliance Kit 8.8.6 * * * Netapp Virtual Storage Console * * * * Netapp Oncommand Unified Manager * * * * Netapp Aff Baseboard Management Controller * * * Netapp Fas Baseboard Management Controller * * * Netapp Data Ontap * * * Netapp Service Processor * * * Netapp Clustered Data Ontap * * * Netapp Steelstore Cloud Integrated Storage * * * Netapp Ontap Select Deploy * * * Netapp Data Ontap Edge * * * Netapp Cloud Backup * * * Canonical Ubuntu Linux 18.04 * * * Canonical Ubuntu Linux 14.04 * * * Canonical Ubuntu Linux 16.04 * * * Redhat Enterprise Linux Workstation 6.0 * * * Redhat Enterprise Linux Server 6.0 * * * Redhat Enterprise Linux Desktop 6.0 * * * Redhat Enterprise Linux Server 7.0 * * * Redhat Enterprise Linux Workstation 7.0 * * * Redhat Enterprise Linux Desktop 7.0 * * * Debian Debian Linux 9.0 * * * Debian Debian Linux 8.0 * * * Openbsd Openssh * * * *	Netapp Cn1610 * * * Netapp Cn1610 Firmware * * * Netapp Storage Replication Adapter * * * * Netapp Vasa Provider * * * * Siemens Scalance X204rna * * * Siemens Scalance X204rna Firmware * * * *
Vulnerability is valid if product versions listed below are used 0
Oracle Sun Zfs Storage Appliance Kit 8.8.6 * * * Netapp Virtual Storage Console * * * * Netapp Oncommand Unified Manager * * * * Netapp Aff Baseboard Management Controller * * * Netapp Fas Baseboard Management Controller * * * Netapp Data Ontap * * * Netapp Service Processor * * * Netapp Clustered Data Ontap * * * Netapp Steelstore Cloud Integrated Storage * * * Netapp Ontap Select Deploy * * * Netapp Data Ontap Edge * * * Netapp Cloud Backup * * * Canonical Ubuntu Linux 18.04 * * * Canonical Ubuntu Linux 14.04 * * * Canonical Ubuntu Linux 16.04 * * * Redhat Enterprise Linux Workstation 6.0 * * * Redhat Enterprise Linux Server 6.0 * * * Redhat Enterprise Linux Desktop 6.0 * * * Redhat Enterprise Linux Server 7.0 * * * Redhat Enterprise Linux Workstation 7.0 * * * Redhat Enterprise Linux Desktop 7.0 * * * Debian Debian Linux 9.0 * * * Debian Debian Linux 8.0 * * * Openbsd Openssh * * * *	Netapp Cn1610 * * * Netapp Cn1610 Firmware * * * Netapp Storage Replication Adapter * * * * Netapp Vasa Provider * * * * Siemens Scalance X204rna * * * Siemens Scalance X204rna Firmware * * * *
Vulnerability is valid if product versions listed below are used 0
Oracle Sun Zfs Storage Appliance Kit 8.8.6 * * * Netapp Virtual Storage Console * * * * Netapp Oncommand Unified Manager * * * * Netapp Aff Baseboard Management Controller * * * Netapp Fas Baseboard Management Controller * * * Netapp Data Ontap * * * Netapp Service Processor * * * Netapp Clustered Data Ontap * * * Netapp Steelstore Cloud Integrated Storage * * * Netapp Ontap Select Deploy * * * Netapp Data Ontap Edge * * * Netapp Cloud Backup * * * Canonical Ubuntu Linux 18.04 * * * Canonical Ubuntu Linux 14.04 * * * Canonical Ubuntu Linux 16.04 * * * Redhat Enterprise Linux Workstation 6.0 * * * Redhat Enterprise Linux Server 6.0 * * * Redhat Enterprise Linux Desktop 6.0 * * * Redhat Enterprise Linux Server 7.0 * * * Redhat Enterprise Linux Workstation 7.0 * * * Redhat Enterprise Linux Desktop 7.0 * * * Debian Debian Linux 9.0 * * * Debian Debian Linux 8.0 * * * Openbsd Openssh * * * *	Netapp Cn1610 * * * Netapp Cn1610 Firmware * * * Netapp Storage Replication Adapter * * * * Netapp Vasa Provider * * * * Siemens Scalance X204rna * * * Siemens Scalance X204rna Firmware * * * *
Vulnerability is valid if product versions listed below are used 0
Oracle Sun Zfs Storage Appliance Kit 8.8.6 * * * Netapp Virtual Storage Console * * * * Netapp Oncommand Unified Manager * * * * Netapp Aff Baseboard Management Controller * * * Netapp Fas Baseboard Management Controller * * * Netapp Data Ontap * * * Netapp Service Processor * * * Netapp Clustered Data Ontap * * * Netapp Steelstore Cloud Integrated Storage * * * Netapp Ontap Select Deploy * * * Netapp Data Ontap Edge * * * Netapp Cloud Backup * * * Canonical Ubuntu Linux 18.04 * * * Canonical Ubuntu Linux 14.04 * * * Canonical Ubuntu Linux 16.04 * * * Redhat Enterprise Linux Workstation 6.0 * * * Redhat Enterprise Linux Server 6.0 * * * Redhat Enterprise Linux Desktop 6.0 * * * Redhat Enterprise Linux Server 7.0 * * * Redhat Enterprise Linux Workstation 7.0 * * * Redhat Enterprise Linux Desktop 7.0 * * * Debian Debian Linux 9.0 * * * Debian Debian Linux 8.0 * * * Openbsd Openssh * * * *	Netapp Cn1610 * * * Netapp Cn1610 Firmware * * * Netapp Storage Replication Adapter * * * * Netapp Vasa Provider * * * * Siemens Scalance X204rna * * * Siemens Scalance X204rna Firmware * * * *
Vulnerability is valid if product versions listed below are used 0
Oracle Sun Zfs Storage Appliance Kit 8.8.6 * * * Netapp Virtual Storage Console * * * * Netapp Oncommand Unified Manager * * * * Netapp Aff Baseboard Management Controller * * * Netapp Fas Baseboard Management Controller * * * Netapp Data Ontap * * * Netapp Service Processor * * * Netapp Clustered Data Ontap * * * Netapp Steelstore Cloud Integrated Storage * * * Netapp Ontap Select Deploy * * * Netapp Data Ontap Edge * * * Netapp Cloud Backup * * * Canonical Ubuntu Linux 18.04 * * * Canonical Ubuntu Linux 14.04 * * * Canonical Ubuntu Linux 16.04 * * * Redhat Enterprise Linux Workstation 6.0 * * * Redhat Enterprise Linux Server 6.0 * * * Redhat Enterprise Linux Desktop 6.0 * * * Redhat Enterprise Linux Server 7.0 * * * Redhat Enterprise Linux Workstation 7.0 * * * Redhat Enterprise Linux Desktop 7.0 * * * Debian Debian Linux 9.0 * * * Debian Debian Linux 8.0 * * * Openbsd Openssh * * * *	Netapp Cn1610 * * * Netapp Cn1610 Firmware * * * Netapp Storage Replication Adapter * * * * Netapp Vasa Provider * * * * Siemens Scalance X204rna * * * Siemens Scalance X204rna Firmware * * * *
Vulnerability is valid if product versions listed below are used 0
Oracle Sun Zfs Storage Appliance Kit 8.8.6 * * * Netapp Virtual Storage Console * * * * Netapp Oncommand Unified Manager * * * * Netapp Aff Baseboard Management Controller * * * Netapp Fas Baseboard Management Controller * * * Netapp Data Ontap * * * Netapp Service Processor * * * Netapp Clustered Data Ontap * * * Netapp Steelstore Cloud Integrated Storage * * * Netapp Ontap Select Deploy * * * Netapp Data Ontap Edge * * * Netapp Cloud Backup * * * Canonical Ubuntu Linux 18.04 * * * Canonical Ubuntu Linux 14.04 * * * Canonical Ubuntu Linux 16.04 * * * Redhat Enterprise Linux Workstation 6.0 * * * Redhat Enterprise Linux Server 6.0 * * * Redhat Enterprise Linux Desktop 6.0 * * * Redhat Enterprise Linux Server 7.0 * * * Redhat Enterprise Linux Workstation 7.0 * * * Redhat Enterprise Linux Desktop 7.0 * * * Debian Debian Linux 9.0 * * * Debian Debian Linux 8.0 * * * Openbsd Openssh * * * *	Netapp Cn1610 * * * Netapp Cn1610 Firmware * * * Netapp Storage Replication Adapter * * * * Netapp Vasa Provider * * * * Siemens Scalance X204rna * * * Siemens Scalance X204rna Firmware * * * *
Vulnerability is valid if product versions listed below are used 0
Oracle Sun Zfs Storage Appliance Kit 8.8.6 * * * Netapp Virtual Storage Console * * * * Netapp Oncommand Unified Manager * * * * Netapp Aff Baseboard Management Controller * * * Netapp Fas Baseboard Management Controller * * * Netapp Data Ontap * * * Netapp Service Processor * * * Netapp Clustered Data Ontap * * * Netapp Steelstore Cloud Integrated Storage * * * Netapp Ontap Select Deploy * * * Netapp Data Ontap Edge * * * Netapp Cloud Backup * * * Canonical Ubuntu Linux 18.04 * * * Canonical Ubuntu Linux 14.04 * * * Canonical Ubuntu Linux 16.04 * * * Redhat Enterprise Linux Workstation 6.0 * * * Redhat Enterprise Linux Server 6.0 * * * Redhat Enterprise Linux Desktop 6.0 * * * Redhat Enterprise Linux Server 7.0 * * * Redhat Enterprise Linux Workstation 7.0 * * * Redhat Enterprise Linux Desktop 7.0 * * * Debian Debian Linux 9.0 * * * Debian Debian Linux 8.0 * * * Openbsd Openssh * * * *	Netapp Cn1610 * * * Netapp Cn1610 Firmware * * * Netapp Storage Replication Adapter * * * * Netapp Vasa Provider * * * * Siemens Scalance X204rna * * * Siemens Scalance X204rna Firmware * * * *

- Metasploit Modules Related To CVE-2018-15473

There are not any metasploit modules related to this CVE entry (Please visit www.metasploit.com for more information)