Action not permitted
Modal body text goes here.
Modal Title
Modal Body
CVE-2018-7750 (GCVE-0-2018-7750)
Vulnerability from cvelistv5 – Published: 2018-03-13 18:00 – Updated: 2024-08-05 06:37
VLAI
EPSS
Summary
transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.
Severity
No CVSS data available.
CWE
- n/a
Assigner
References
18 references
Date Public
2018-03-13 00:00
{
"containers": {
"adp": [
{
"providerMetadata": {
"dateUpdated": "2024-08-05T06:37:58.928Z",
"orgId": "af854a3a-2127-422b-91ae-364da2661108",
"shortName": "CVE"
},
"references": [
{
"name": "RHSA-2018:1124",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1124"
},
{
"name": "45712",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB",
"x_transferred"
],
"url": "https://www.exploit-db.com/exploits/45712/"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/paramiko/paramiko/issues/1175"
},
{
"name": "RHSA-2018:1125",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1125"
},
{
"name": "RHSA-2018:1972",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1972"
},
{
"name": "RHSA-2018:1274",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1274"
},
{
"name": "[debian-lts-announce] 20181027 [SECURITY] [DLA 1556-1] paramiko security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html"
},
{
"name": "USN-3603-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3603-2/"
},
{
"name": "RHSA-2018:0646",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0646"
},
{
"name": "RHSA-2018:1213",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1213"
},
{
"name": "USN-3603-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU",
"x_transferred"
],
"url": "https://usn.ubuntu.com/3603-1/"
},
{
"name": "RHSA-2018:1525",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1525"
},
{
"name": "RHSA-2018:1328",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1328"
},
{
"name": "RHSA-2018:0591",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT",
"x_transferred"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0591"
},
{
"name": "103713",
"tags": [
"vdb-entry",
"x_refsource_BID",
"x_transferred"
],
"url": "http://www.securityfocus.com/bid/103713"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516"
},
{
"tags": [
"x_refsource_CONFIRM",
"x_transferred"
],
"url": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst"
},
{
"name": "[debian-lts-announce] 20211228 [SECURITY] [DLA 2860-1] paramiko security update",
"tags": [
"mailing-list",
"x_refsource_MLIST",
"x_transferred"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html"
}
],
"title": "CVE Program Container"
}
],
"cna": {
"affected": [
{
"product": "n/a",
"vendor": "n/a",
"versions": [
{
"status": "affected",
"version": "n/a"
}
]
}
],
"datePublic": "2018-03-13T00:00:00.000Z",
"descriptions": [
{
"lang": "en",
"value": "transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step."
}
],
"problemTypes": [
{
"descriptions": [
{
"description": "n/a",
"lang": "en",
"type": "text"
}
]
}
],
"providerMetadata": {
"dateUpdated": "2021-12-28T12:06:17.000Z",
"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"shortName": "mitre"
},
"references": [
{
"name": "RHSA-2018:1124",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1124"
},
{
"name": "45712",
"tags": [
"exploit",
"x_refsource_EXPLOIT-DB"
],
"url": "https://www.exploit-db.com/exploits/45712/"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/paramiko/paramiko/issues/1175"
},
{
"name": "RHSA-2018:1125",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1125"
},
{
"name": "RHSA-2018:1972",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1972"
},
{
"name": "RHSA-2018:1274",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1274"
},
{
"name": "[debian-lts-announce] 20181027 [SECURITY] [DLA 1556-1] paramiko security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html"
},
{
"name": "USN-3603-2",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3603-2/"
},
{
"name": "RHSA-2018:0646",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0646"
},
{
"name": "RHSA-2018:1213",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1213"
},
{
"name": "USN-3603-1",
"tags": [
"vendor-advisory",
"x_refsource_UBUNTU"
],
"url": "https://usn.ubuntu.com/3603-1/"
},
{
"name": "RHSA-2018:1525",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1525"
},
{
"name": "RHSA-2018:1328",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1328"
},
{
"name": "RHSA-2018:0591",
"tags": [
"vendor-advisory",
"x_refsource_REDHAT"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0591"
},
{
"name": "103713",
"tags": [
"vdb-entry",
"x_refsource_BID"
],
"url": "http://www.securityfocus.com/bid/103713"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516"
},
{
"tags": [
"x_refsource_CONFIRM"
],
"url": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst"
},
{
"name": "[debian-lts-announce] 20211228 [SECURITY] [DLA 2860-1] paramiko security update",
"tags": [
"mailing-list",
"x_refsource_MLIST"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html"
}
],
"x_legacyV4Record": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-7750",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "RHSA-2018:1124",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1124"
},
{
"name": "45712",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/45712/"
},
{
"name": "https://github.com/paramiko/paramiko/issues/1175",
"refsource": "CONFIRM",
"url": "https://github.com/paramiko/paramiko/issues/1175"
},
{
"name": "RHSA-2018:1125",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1125"
},
{
"name": "RHSA-2018:1972",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1972"
},
{
"name": "RHSA-2018:1274",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1274"
},
{
"name": "[debian-lts-announce] 20181027 [SECURITY] [DLA 1556-1] paramiko security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html"
},
{
"name": "USN-3603-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3603-2/"
},
{
"name": "RHSA-2018:0646",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0646"
},
{
"name": "RHSA-2018:1213",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1213"
},
{
"name": "USN-3603-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3603-1/"
},
{
"name": "RHSA-2018:1525",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1525"
},
{
"name": "RHSA-2018:1328",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1328"
},
{
"name": "RHSA-2018:0591",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0591"
},
{
"name": "103713",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/103713"
},
{
"name": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516",
"refsource": "CONFIRM",
"url": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516"
},
{
"name": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst",
"refsource": "CONFIRM",
"url": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst"
},
{
"name": "[debian-lts-announce] 20211228 [SECURITY] [DLA 2860-1] paramiko security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html"
}
]
}
}
}
},
"cveMetadata": {
"assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca",
"assignerShortName": "mitre",
"cveId": "CVE-2018-7750",
"datePublished": "2018-03-13T18:00:00.000Z",
"dateReserved": "2018-03-07T00:00:00.000Z",
"dateUpdated": "2024-08-05T06:37:58.928Z",
"state": "PUBLISHED"
},
"dataType": "CVE_RECORD",
"dataVersion": "5.1",
"vulnerability-lookup:meta": {
"epss": {
"cve": "CVE-2018-7750",
"date": "2026-05-29",
"epss": "0.13825",
"percentile": "0.94406"
},
"nvd": "{\"cve\":{\"id\":\"CVE-2018-7750\",\"sourceIdentifier\":\"cve@mitre.org\",\"published\":\"2018-03-13T18:29:00.303\",\"lastModified\":\"2024-11-21T04:12:39.650\",\"vulnStatus\":\"Modified\",\"cveTags\":[],\"descriptions\":[{\"lang\":\"en\",\"value\":\"transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.\"},{\"lang\":\"es\",\"value\":\"transport.py en la implementaci\u00f3n del servidor SSH de Paramiko, en versiones anteriores a la 1.17.6; versiones 1.18.x anteriores a la 1.18.5; versiones 2.0.x anteriores a la 2.0.8; versiones 2.1.x anteriores a la 2.1.5; versiones 2.2.x anteriores a la 2.2.3; versiones 2.3.x anteriores a la 2.3.2 y versiones 2.4.x anteriores a la 2.4.1, no comprueba adecuadamente si la autenticaci\u00f3n se ha completado antes de procesar otras peticiones, tal y como demuestra channel-open. Un cliente SSH personalizado puede simplemente omitir el paso de autenticaci\u00f3n.\"}],\"metrics\":{\"cvssMetricV31\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"3.1\",\"vectorString\":\"CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H\",\"baseScore\":9.8,\"baseSeverity\":\"CRITICAL\",\"attackVector\":\"NETWORK\",\"attackComplexity\":\"LOW\",\"privilegesRequired\":\"NONE\",\"userInteraction\":\"NONE\",\"scope\":\"UNCHANGED\",\"confidentialityImpact\":\"HIGH\",\"integrityImpact\":\"HIGH\",\"availabilityImpact\":\"HIGH\"},\"exploitabilityScore\":3.9,\"impactScore\":5.9}],\"cvssMetricV2\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"cvssData\":{\"version\":\"2.0\",\"vectorString\":\"AV:N/AC:L/Au:N/C:P/I:P/A:P\",\"baseScore\":7.5,\"accessVector\":\"NETWORK\",\"accessComplexity\":\"LOW\",\"authentication\":\"NONE\",\"confidentialityImpact\":\"PARTIAL\",\"integrityImpact\":\"PARTIAL\",\"availabilityImpact\":\"PARTIAL\"},\"baseSeverity\":\"HIGH\",\"exploitabilityScore\":10.0,\"impactScore\":6.4,\"acInsufInfo\":false,\"obtainAllPrivilege\":false,\"obtainUserPrivilege\":false,\"obtainOtherPrivilege\":false,\"userInteractionRequired\":false}]},\"weaknesses\":[{\"source\":\"nvd@nist.gov\",\"type\":\"Primary\",\"description\":[{\"lang\":\"en\",\"value\":\"CWE-287\"}]}],\"configurations\":[{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*\",\"versionEndExcluding\":\"1.17.6\",\"matchCriteriaId\":\"5D1D3BB9-1426-4498-9BB4-A7F7696C7D18\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"1.18.0\",\"versionEndExcluding\":\"1.18.5\",\"matchCriteriaId\":\"8F645AC2-3A4F-47C7-9DFC-DEB25C467D21\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.0.0\",\"versionEndExcluding\":\"2.0.8\",\"matchCriteriaId\":\"1B500C82-6C71-4ED6-B334-E13DBFFA6F51\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.1.0\",\"versionEndExcluding\":\"2.1.5\",\"matchCriteriaId\":\"E90FB648-ABD2-4BDC-AD67-DD904595D967\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.2.0\",\"versionEndExcluding\":\"2.2.3\",\"matchCriteriaId\":\"B2C6E9E8-AF99-4E7B-8EE4-646835D7AFE1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*\",\"versionStartIncluding\":\"2.3.0\",\"versionEndExcluding\":\"2.3.2\",\"matchCriteriaId\":\"4E16324F-880D-44DF-8F01-EFAAA5358E81\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:paramiko:paramiko:2.4.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"CFD08D44-023B-4126-8D7F-E9ECFDA59A6E\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"8989CD03-49A1-4831-BF98-9F21592788BE\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:ansible_engine:2.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"5864D753-2A37-4800-A73E-6ACA0662B605\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:cloudforms:4.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"32E1BA91-4695-4E64-A9D7-4A6CB6904D41\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:cloudforms:4.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"67F7263F-113D-4BAE-B8CB-86A61531A2AC\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:a:redhat:virtualization:4.1:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"03EB0F63-DB24-4240-BC44-C92BAE7EAF42\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"9BBCD86A-E6C7-4444-9D74-F861084090F0\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"51EF4996-72F4-4FA4-814F-F5991E7A8318\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"AF83BB87-B203-48F9-9D06-48A5FE399050\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"1F3BEFDB-5156-4E1C-80BB-8BE9FEAA7623\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"16E6D998-B41D-4B49-9E00-8336D2E40A4A\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_eus:6.7:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"6C81647C-9A53-481D-A54C-36770A093F90\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_server_tus:6.6:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"13E02156-E748-4820-B76F-7074793837E1\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"E5ED5807-55B7-47C5-97A6-03233F4FBC3A\"}]}]},{\"nodes\":[{\"operator\":\"OR\",\"negate\":false,\"cpeMatch\":[{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43\"},{\"vulnerable\":true,\"criteria\":\"cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*\",\"matchCriteriaId\":\"DEECE5FC-CACF-4496-A3E7-164736409252\"}]}]}],\"references\":[{\"url\":\"http://www.securityfocus.com/bid/103713\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0591\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0646\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1124\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1125\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1213\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1274\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1328\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1525\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1972\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516\",\"source\":\"cve@mitre.org\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/paramiko/paramiko/issues/1175\",\"source\":\"cve@mitre.org\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html\",\"source\":\"cve@mitre.org\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3603-1/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3603-2/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.exploit-db.com/exploits/45712/\",\"source\":\"cve@mitre.org\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"http://www.securityfocus.com/bid/103713\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\",\"VDB Entry\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0591\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:0646\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1124\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1125\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1213\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1274\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1328\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1525\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://access.redhat.com/errata/RHSA-2018:1972\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Patch\",\"Third Party Advisory\"]},{\"url\":\"https://github.com/paramiko/paramiko/issues/1175\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Issue Tracking\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Mailing List\",\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3603-1/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://usn.ubuntu.com/3603-2/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Third Party Advisory\"]},{\"url\":\"https://www.exploit-db.com/exploits/45712/\",\"source\":\"af854a3a-2127-422b-91ae-364da2661108\",\"tags\":[\"Exploit\",\"Third Party Advisory\",\"VDB Entry\"]}]}}"
}
}
Title
Уязвимость компонента transport.py библиотеки протокола SSHv2 для Python Paramiko, позволяющая нарушителю получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
Description
Уязвимость компонента transport.py библиотеки протокола SSHv2 для Python Paramiko связана с недостатками процедуры аутентификации. Эксплуатация уязвимости позволяет нарушителю, действующему удаленно, получить доступ к конфиденциальным данным, нарушить их целостность, а также вызвать отказ в обслуживании
Severity
Vendor
ООО «РусБИТех-Астра», Сообщество свободного программного обеспечения, АО «Концерн ВНИИНС»
Software Name
Astra Linux Special Edition (запись в едином реестре российских программ №369), Debian GNU/Linux, Astra Linux Special Edition для «Эльбрус» (запись в едином реестре российских программ №11156), Paramiko, ОС ОН «Стрелец» (запись в едином реестре российских программ №6177)
Software Version
1.6 «Смоленск» (Astra Linux Special Edition), 10 (Debian GNU/Linux), 8.1 «Ленинград» (Astra Linux Special Edition для «Эльбрус»), 11 (Debian GNU/Linux), 2.4.0 (Paramiko), до 1.17.6 (Paramiko), от 1.18.0 до 1.18.5 (Paramiko), от 2.0.0 до 2.0.8 (Paramiko), от 2.1.0 до 2.1.5 (Paramiko), от 2.2.0 до 2.2.3 (Paramiko), от 2.3.0 до 2.3.2 (Paramiko), до 16.01.2023 (ОС ОН «Стрелец»)
Possible Mitigations
Для Paramiko:
использование рекомендаций производителя: https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516
Для Debian:
использование рекомендаций производителя: https://security-tracker.debian.org/tracker/CVE-2018-7750
Для ОС Astra Linux:
использование рекомендаций производителя: https://wiki.astralinux.ru/astra-linux-se16-bulletin-20220829SE16
Для Astra Linux Special Edition для «Эльбрус» 8.1 «Ленинград»:
обновить пакет paramiko до 2.0.0-1+deb9u2 или более высокой версии, используя рекомендации производителя: https://wiki.astralinux.ru/astra-linux-se81-bulletin-20230315SE81
Для ОС ОН «Стрелец»:
Обновление программного обеспечения paramiko до версии 2.0.0-1+deb9u2
Reference
https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516
https://github.com/paramiko/paramiko/issues/1175
https://nvd.nist.gov/vuln/detail/CVE-2018-7750
https://security-tracker.debian.org/tracker/CVE-2018-7750
https://wiki.astralinux.ru/astra-linux-se16-bulletin-20220829SE16
https://www.exploit-db.com/exploits/45712/
https://wiki.astralinux.ru/astra-linux-se81-bulletin-20230315SE81
https://strelets.net/patchi-i-obnovleniya-bezopasnosti#16012023
CWE
CWE-287
{
"CVSS 2.0": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"CVSS 3.0": "AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"CVSS 4.0": null,
"remediation_\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": null,
"remediation_\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435": null,
"\u0412\u0435\u043d\u0434\u043e\u0440 \u041f\u041e": "\u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb, \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f, \u0410\u041e \u00ab\u041a\u043e\u043d\u0446\u0435\u0440\u043d \u0412\u041d\u0418\u0418\u041d\u0421\u00bb",
"\u0412\u0435\u0440\u0441\u0438\u044f \u041f\u041e": "1.6 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (Astra Linux Special Edition), 10 (Debian GNU/Linux), 8.1 \u00ab\u041b\u0435\u043d\u0438\u043d\u0433\u0440\u0430\u0434\u00bb (Astra Linux Special Edition \u0434\u043b\u044f \u00ab\u042d\u043b\u044c\u0431\u0440\u0443\u0441\u00bb), 11 (Debian GNU/Linux), 2.4.0 (Paramiko), \u0434\u043e 1.17.6 (Paramiko), \u043e\u0442 1.18.0 \u0434\u043e 1.18.5 (Paramiko), \u043e\u0442 2.0.0 \u0434\u043e 2.0.8 (Paramiko), \u043e\u0442 2.1.0 \u0434\u043e 2.1.5 (Paramiko), \u043e\u0442 2.2.0 \u0434\u043e 2.2.3 (Paramiko), \u043e\u0442 2.3.0 \u0434\u043e 2.3.2 (Paramiko), \u0434\u043e 16.01.2023 (\u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb)",
"\u0412\u043e\u0437\u043c\u043e\u0436\u043d\u044b\u0435 \u043c\u0435\u0440\u044b \u043f\u043e \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044e": "\u0414\u043b\u044f Paramiko:\n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516\n\n\u0414\u043b\u044f Debian:\n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://security-tracker.debian.org/tracker/CVE-2018-7750\n\n\u0414\u043b\u044f \u041e\u0421 Astra Linux:\n\u0438\u0441\u043f\u043e\u043b\u044c\u0437\u043e\u0432\u0430\u043d\u0438\u0435 \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0439 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se16-bulletin-20220829SE16\n\n\u0414\u043b\u044f Astra Linux Special Edition \u0434\u043b\u044f \u00ab\u042d\u043b\u044c\u0431\u0440\u0443\u0441\u00bb 8.1 \u00ab\u041b\u0435\u043d\u0438\u043d\u0433\u0440\u0430\u0434\u00bb:\n\u043e\u0431\u043d\u043e\u0432\u0438\u0442\u044c \u043f\u0430\u043a\u0435\u0442 paramiko \u0434\u043e 2.0.0-1+deb9u2 \u0438\u043b\u0438 \u0431\u043e\u043b\u0435\u0435 \u0432\u044b\u0441\u043e\u043a\u043e\u0439 \u0432\u0435\u0440\u0441\u0438\u0438, \u0438\u0441\u043f\u043e\u043b\u044c\u0437\u0443\u044f \u0440\u0435\u043a\u043e\u043c\u0435\u043d\u0434\u0430\u0446\u0438\u0438 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u044f: https://wiki.astralinux.ru/astra-linux-se81-bulletin-20230315SE81\n\n\u0414\u043b\u044f \u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb:\n\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f paramiko \u0434\u043e \u0432\u0435\u0440\u0441\u0438\u0438 2.0.0-1+deb9u2",
"\u0414\u0430\u0442\u0430 \u0432\u044b\u044f\u0432\u043b\u0435\u043d\u0438\u044f": "13.03.2018",
"\u0414\u0430\u0442\u0430 \u043f\u043e\u0441\u043b\u0435\u0434\u043d\u0435\u0433\u043e \u043e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u044f": "21.11.2023",
"\u0414\u0430\u0442\u0430 \u043f\u0443\u0431\u043b\u0438\u043a\u0430\u0446\u0438\u0438": "03.10.2022",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440": "BDU:2022-06039",
"\u0418\u0434\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0442\u043e\u0440\u044b \u0434\u0440\u0443\u0433\u0438\u0445 \u0441\u0438\u0441\u0442\u0435\u043c \u043e\u043f\u0438\u0441\u0430\u043d\u0438\u0439 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "CVE-2018-7750",
"\u0418\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f \u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0430",
"\u041a\u043b\u0430\u0441\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u0434\u0430",
"\u041d\u0430\u0437\u0432\u0430\u043d\u0438\u0435 \u041f\u041e": "Astra Linux Special Edition (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), Debian GNU/Linux, Astra Linux Special Edition \u0434\u043b\u044f \u00ab\u042d\u043b\u044c\u0431\u0440\u0443\u0441\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u211611156), Paramiko, \u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21166177)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u041e\u0421 \u0438 \u0442\u0438\u043f \u0430\u043f\u043f\u0430\u0440\u0430\u0442\u043d\u043e\u0439 \u043f\u043b\u0430\u0442\u0444\u043e\u0440\u043c\u044b": "\u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition 1.6 \u00ab\u0421\u043c\u043e\u043b\u0435\u043d\u0441\u043a\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u2116369), \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 10 , \u041e\u041e\u041e \u00ab\u0420\u0443\u0441\u0411\u0418\u0422\u0435\u0445-\u0410\u0441\u0442\u0440\u0430\u00bb Astra Linux Special Edition \u0434\u043b\u044f \u00ab\u042d\u043b\u044c\u0431\u0440\u0443\u0441\u00bb 8.1 \u00ab\u041b\u0435\u043d\u0438\u043d\u0433\u0440\u0430\u0434\u00bb (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u211611156), \u0421\u043e\u043e\u0431\u0449\u0435\u0441\u0442\u0432\u043e \u0441\u0432\u043e\u0431\u043e\u0434\u043d\u043e\u0433\u043e \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f Debian GNU/Linux 11 , \u0410\u041e \u00ab\u041a\u043e\u043d\u0446\u0435\u0440\u043d \u0412\u041d\u0418\u0418\u041d\u0421\u00bb \u041e\u0421 \u041e\u041d \u00ab\u0421\u0442\u0440\u0435\u043b\u0435\u0446\u00bb \u0434\u043e 16.01.2023 (\u0437\u0430\u043f\u0438\u0441\u044c \u0432 \u0435\u0434\u0438\u043d\u043e\u043c \u0440\u0435\u0435\u0441\u0442\u0440\u0435 \u0440\u043e\u0441\u0441\u0438\u0439\u0441\u043a\u0438\u0445 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c \u21166177)",
"\u041d\u0430\u0438\u043c\u0435\u043d\u043e\u0432\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 transport.py \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0438 \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0430 SSHv2 \u0434\u043b\u044f Python Paramiko, \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u044e\u0449\u0430\u044f \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u0434\u0430\u043d\u043d\u044b\u043c, \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u044c \u0438\u0445 \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041d\u0430\u043b\u0438\u0447\u0438\u0435 \u044d\u043a\u0441\u043f\u043b\u043e\u0439\u0442\u0430": "\u0421\u0443\u0449\u0435\u0441\u0442\u0432\u0443\u0435\u0442 \u0432 \u043e\u0442\u043a\u0440\u044b\u0442\u043e\u043c \u0434\u043e\u0441\u0442\u0443\u043f\u0435",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "\u041d\u0435\u043f\u0440\u0430\u0432\u0438\u043b\u044c\u043d\u0430\u044f \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u044f (CWE-287)",
"\u041e\u043f\u0438\u0441\u0430\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u0423\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u044c \u043a\u043e\u043c\u043f\u043e\u043d\u0435\u043d\u0442\u0430 transport.py \u0431\u0438\u0431\u043b\u0438\u043e\u0442\u0435\u043a\u0438 \u043f\u0440\u043e\u0442\u043e\u043a\u043e\u043b\u0430 SSHv2 \u0434\u043b\u044f Python Paramiko \u0441\u0432\u044f\u0437\u0430\u043d\u0430 \u0441 \u043d\u0435\u0434\u043e\u0441\u0442\u0430\u0442\u043a\u0430\u043c\u0438 \u043f\u0440\u043e\u0446\u0435\u0434\u0443\u0440\u044b \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438. \u042d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u044f \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438 \u043f\u043e\u0437\u0432\u043e\u043b\u044f\u0435\u0442 \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u0435\u043b\u044e, \u0434\u0435\u0439\u0441\u0442\u0432\u0443\u044e\u0449\u0435\u043c\u0443 \u0443\u0434\u0430\u043b\u0435\u043d\u043d\u043e, \u043f\u043e\u043b\u0443\u0447\u0438\u0442\u044c \u0434\u043e\u0441\u0442\u0443\u043f \u043a \u043a\u043e\u043d\u0444\u0438\u0434\u0435\u043d\u0446\u0438\u0430\u043b\u044c\u043d\u044b\u043c \u0434\u0430\u043d\u043d\u044b\u043c, \u043d\u0430\u0440\u0443\u0448\u0438\u0442\u044c \u0438\u0445 \u0446\u0435\u043b\u043e\u0441\u0442\u043d\u043e\u0441\u0442\u044c, \u0430 \u0442\u0430\u043a\u0436\u0435 \u0432\u044b\u0437\u0432\u0430\u0442\u044c \u043e\u0442\u043a\u0430\u0437 \u0432 \u043e\u0431\u0441\u043b\u0443\u0436\u0438\u0432\u0430\u043d\u0438\u0438",
"\u041f\u043e\u0441\u043b\u0435\u0434\u0441\u0442\u0432\u0438\u044f \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": null,
"\u041f\u0440\u043e\u0447\u0430\u044f \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u044f": null,
"\u0421\u0432\u044f\u0437\u044c \u0441 \u0438\u043d\u0446\u0438\u0434\u0435\u043d\u0442\u0430\u043c\u0438 \u0418\u0411": "\u0414\u0430\u043d\u043d\u044b\u0435 \u0443\u0442\u043e\u0447\u043d\u044f\u044e\u0442\u0441\u044f",
"\u0421\u043e\u0441\u0442\u043e\u044f\u043d\u0438\u0435 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041e\u043f\u0443\u0431\u043b\u0438\u043a\u043e\u0432\u0430\u043d\u0430",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u0443\u0441\u0442\u0440\u0430\u043d\u0435\u043d\u0438\u044f": "\u041e\u0431\u043d\u043e\u0432\u043b\u0435\u043d\u0438\u0435 \u043f\u0440\u043e\u0433\u0440\u0430\u043c\u043c\u043d\u043e\u0433\u043e \u043e\u0431\u0435\u0441\u043f\u0435\u0447\u0435\u043d\u0438\u044f",
"\u0421\u043f\u043e\u0441\u043e\u0431 \u044d\u043a\u0441\u043f\u043b\u0443\u0430\u0442\u0430\u0446\u0438\u0438": "\u041d\u0430\u0440\u0443\u0448\u0435\u043d\u0438\u0435 \u0430\u0443\u0442\u0435\u043d\u0442\u0438\u0444\u0438\u043a\u0430\u0446\u0438\u0438",
"\u0421\u0441\u044b\u043b\u043a\u0438 \u043d\u0430 \u0438\u0441\u0442\u043e\u0447\u043d\u0438\u043a\u0438": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516\nhttps://github.com/paramiko/paramiko/issues/1175\nhttps://nvd.nist.gov/vuln/detail/CVE-2018-7750\nhttps://security-tracker.debian.org/tracker/CVE-2018-7750\nhttps://wiki.astralinux.ru/astra-linux-se16-bulletin-20220829SE16\nhttps://www.exploit-db.com/exploits/45712/\nhttps://wiki.astralinux.ru/astra-linux-se81-bulletin-20230315SE81\nhttps://strelets.net/patchi-i-obnovleniya-bezopasnosti#16012023",
"\u0421\u0442\u0430\u0442\u0443\u0441 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041f\u043e\u0434\u0442\u0432\u0435\u0440\u0436\u0434\u0435\u043d\u0430 \u043f\u0440\u043e\u0438\u0437\u0432\u043e\u0434\u0438\u0442\u0435\u043b\u0435\u043c",
"\u0422\u0438\u043f \u041f\u041e": "\u041e\u043f\u0435\u0440\u0430\u0446\u0438\u043e\u043d\u043d\u0430\u044f \u0441\u0438\u0441\u0442\u0435\u043c\u0430, \u041f\u0440\u0438\u043a\u043b\u0430\u0434\u043d\u043e\u0435 \u041f\u041e \u0438\u043d\u0444\u043e\u0440\u043c\u0430\u0446\u0438\u043e\u043d\u043d\u044b\u0445 \u0441\u0438\u0441\u0442\u0435\u043c",
"\u0422\u0438\u043f \u043e\u0448\u0438\u0431\u043a\u0438 CWE": "CWE-287",
"\u0423\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 \u0443\u044f\u0437\u0432\u0438\u043c\u043e\u0441\u0442\u0438": "\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 2.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 10)\n\u041a\u0440\u0438\u0442\u0438\u0447\u0435\u0441\u043a\u0438\u0439 \u0443\u0440\u043e\u0432\u0435\u043d\u044c \u043e\u043f\u0430\u0441\u043d\u043e\u0441\u0442\u0438 (\u0431\u0430\u0437\u043e\u0432\u0430\u044f \u043e\u0446\u0435\u043d\u043a\u0430 CVSS 3.0 \u0441\u043e\u0441\u0442\u0430\u0432\u043b\u044f\u0435\u0442 9,8)"
}
Title
Paramiko SSH服务器实现身份验证查询漏洞
Description
Paramiko是一个基于Python的SSH协议库。SSH server是其中的一个SSH服务器。
Paramiko中的SSH服务器实现的transport.py文件存在安全漏洞,该漏洞源于程序在处理其他请求之前未能正确的检测身份验证是否完成。攻击者可利用该漏洞绕过身份验证。
Severity
中
Patch Name
Paramiko SSH服务器实现身份验证查询漏洞的补丁
Patch Description
Paramiko是一个基于Python的SSH协议库。SSH server是其中的一个SSH服务器。
Paramiko中的SSH服务器实现的transport.py文件存在安全漏洞,该漏洞源于程序在处理其他请求之前未能正确的检测身份验证是否完成。攻击者可利用该漏洞绕过身份验证。目前,供应商发布了安全公告及相关补丁信息,修复了此漏洞。
Formal description
目前厂商已发布升级补丁以修复漏洞,补丁获取链接: https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst
Reference
https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst
Impacted products
| Name | ['Paramiko paramiko <1.17.6', 'Paramiko paramiko 1.18.*,<1.18.5', 'Paramiko paramiko 2.0.*,<2.0.8', 'Paramiko paramiko 2.1.*,<2.1.5', 'Paramiko paramiko 2.2*,<2.2.3', 'Paramiko paramiko 2.3.*,<2.3.2', 'Paramiko paramiko 2.4.*,<2.4.1'] |
|---|
{
"cves": {
"cve": {
"cveNumber": "CVE-2018-7750"
}
},
"description": "Paramiko\u662f\u4e00\u4e2a\u57fa\u4e8ePython\u7684SSH\u534f\u8bae\u5e93\u3002SSH server\u662f\u5176\u4e2d\u7684\u4e00\u4e2aSSH\u670d\u52a1\u5668\u3002\r\n\r\nParamiko\u4e2d\u7684SSH\u670d\u52a1\u5668\u5b9e\u73b0\u7684transport.py\u6587\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u5728\u5904\u7406\u5176\u4ed6\u8bf7\u6c42\u4e4b\u524d\u672a\u80fd\u6b63\u786e\u7684\u68c0\u6d4b\u8eab\u4efd\u9a8c\u8bc1\u662f\u5426\u5b8c\u6210\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u3002",
"discovererName": "bitprophet",
"formalWay": "\u76ee\u524d\u5382\u5546\u5df2\u53d1\u5e03\u5347\u7ea7\u8865\u4e01\u4ee5\u4fee\u590d\u6f0f\u6d1e\uff0c\u8865\u4e01\u83b7\u53d6\u94fe\u63a5\uff1a\r\nhttps://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst",
"isEvent": "\u901a\u7528\u8f6f\u786c\u4ef6\u6f0f\u6d1e",
"number": "CNVD-2018-06104",
"openTime": "2018-03-23",
"patchDescription": "Paramiko\u662f\u4e00\u4e2a\u57fa\u4e8ePython\u7684SSH\u534f\u8bae\u5e93\u3002SSH server\u662f\u5176\u4e2d\u7684\u4e00\u4e2aSSH\u670d\u52a1\u5668\u3002\r\n\r\nParamiko\u4e2d\u7684SSH\u670d\u52a1\u5668\u5b9e\u73b0\u7684transport.py\u6587\u4ef6\u5b58\u5728\u5b89\u5168\u6f0f\u6d1e\uff0c\u8be5\u6f0f\u6d1e\u6e90\u4e8e\u7a0b\u5e8f\u5728\u5904\u7406\u5176\u4ed6\u8bf7\u6c42\u4e4b\u524d\u672a\u80fd\u6b63\u786e\u7684\u68c0\u6d4b\u8eab\u4efd\u9a8c\u8bc1\u662f\u5426\u5b8c\u6210\u3002\u653b\u51fb\u8005\u53ef\u5229\u7528\u8be5\u6f0f\u6d1e\u7ed5\u8fc7\u8eab\u4efd\u9a8c\u8bc1\u3002\u76ee\u524d\uff0c\u4f9b\u5e94\u5546\u53d1\u5e03\u4e86\u5b89\u5168\u516c\u544a\u53ca\u76f8\u5173\u8865\u4e01\u4fe1\u606f\uff0c\u4fee\u590d\u4e86\u6b64\u6f0f\u6d1e\u3002",
"patchName": "Paramiko SSH\u670d\u52a1\u5668\u5b9e\u73b0\u8eab\u4efd\u9a8c\u8bc1\u67e5\u8be2\u6f0f\u6d1e\u7684\u8865\u4e01",
"products": {
"product": [
"Paramiko paramiko \u003c1.17.6",
"Paramiko paramiko 1.18.*\uff0c\u003c1.18.5",
"Paramiko paramiko 2.0.*\uff0c\u003c2.0.8",
"Paramiko paramiko 2.1.*\uff0c\u003c2.1.5",
"Paramiko paramiko 2.2*\uff0c\u003c2.2.3",
"Paramiko paramiko 2.3.*\uff0c\u003c2.3.2",
"Paramiko paramiko 2.4.*\uff0c\u003c2.4.1"
]
},
"referenceLink": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst",
"serverity": "\u4e2d",
"submitTime": "2018-03-20",
"title": "Paramiko SSH\u670d\u52a1\u5668\u5b9e\u73b0\u8eab\u4efd\u9a8c\u8bc1\u67e5\u8be2\u6f0f\u6d1e"
}
FKIE_CVE-2018-7750
Vulnerability from fkie_nvd - Published: 2018-03-13 18:29 - Updated: 2024-11-21 04:12
Severity
Summary
transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.
References
Impacted products
| Vendor | Product | Version | |
|---|---|---|---|
| paramiko | paramiko | * | |
| paramiko | paramiko | * | |
| paramiko | paramiko | * | |
| paramiko | paramiko | * | |
| paramiko | paramiko | * | |
| paramiko | paramiko | * | |
| paramiko | paramiko | 2.4.0 | |
| redhat | ansible_engine | 2.0 | |
| redhat | ansible_engine | 2.4 | |
| redhat | cloudforms | 4.5 | |
| redhat | cloudforms | 4.6 | |
| redhat | virtualization | 4.1 | |
| redhat | enterprise_linux_desktop | 6.0 | |
| redhat | enterprise_linux_server | 6.0 | |
| redhat | enterprise_linux_server | 7.0 | |
| redhat | enterprise_linux_server_aus | 6.4 | |
| redhat | enterprise_linux_server_aus | 6.5 | |
| redhat | enterprise_linux_server_aus | 6.6 | |
| redhat | enterprise_linux_server_eus | 6.7 | |
| redhat | enterprise_linux_server_tus | 6.6 | |
| redhat | enterprise_linux_workstation | 6.0 | |
| debian | debian_linux | 8.0 | |
| debian | debian_linux | 9.0 |
{
"configurations": [
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*",
"matchCriteriaId": "5D1D3BB9-1426-4498-9BB4-A7F7696C7D18",
"versionEndExcluding": "1.17.6",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*",
"matchCriteriaId": "8F645AC2-3A4F-47C7-9DFC-DEB25C467D21",
"versionEndExcluding": "1.18.5",
"versionStartIncluding": "1.18.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*",
"matchCriteriaId": "1B500C82-6C71-4ED6-B334-E13DBFFA6F51",
"versionEndExcluding": "2.0.8",
"versionStartIncluding": "2.0.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*",
"matchCriteriaId": "E90FB648-ABD2-4BDC-AD67-DD904595D967",
"versionEndExcluding": "2.1.5",
"versionStartIncluding": "2.1.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*",
"matchCriteriaId": "B2C6E9E8-AF99-4E7B-8EE4-646835D7AFE1",
"versionEndExcluding": "2.2.3",
"versionStartIncluding": "2.2.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*",
"matchCriteriaId": "4E16324F-880D-44DF-8F01-EFAAA5358E81",
"versionEndExcluding": "2.3.2",
"versionStartIncluding": "2.3.0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:paramiko:paramiko:2.4.0:*:*:*:*:*:*:*",
"matchCriteriaId": "CFD08D44-023B-4126-8D7F-E9ECFDA59A6E",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*",
"matchCriteriaId": "8989CD03-49A1-4831-BF98-9F21592788BE",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:ansible_engine:2.4:*:*:*:*:*:*:*",
"matchCriteriaId": "5864D753-2A37-4800-A73E-6ACA0662B605",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:cloudforms:4.5:*:*:*:*:*:*:*",
"matchCriteriaId": "32E1BA91-4695-4E64-A9D7-4A6CB6904D41",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:cloudforms:4.6:*:*:*:*:*:*:*",
"matchCriteriaId": "67F7263F-113D-4BAE-B8CB-86A61531A2AC",
"vulnerable": true
},
{
"criteria": "cpe:2.3:a:redhat:virtualization:4.1:*:*:*:*:*:*:*",
"matchCriteriaId": "03EB0F63-DB24-4240-BC44-C92BAE7EAF42",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "EE249E1B-A1FD-4E08-AA71-A0E1F10FFE97",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "9BBCD86A-E6C7-4444-9D74-F861084090F0",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"matchCriteriaId": "51EF4996-72F4-4FA4-814F-F5991E7A8318",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:*:*:*:*:*:*:*",
"matchCriteriaId": "AF83BB87-B203-48F9-9D06-48A5FE399050",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*",
"matchCriteriaId": "1F3BEFDB-5156-4E1C-80BB-8BE9FEAA7623",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*",
"matchCriteriaId": "16E6D998-B41D-4B49-9E00-8336D2E40A4A",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_eus:6.7:*:*:*:*:*:*:*",
"matchCriteriaId": "6C81647C-9A53-481D-A54C-36770A093F90",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_server_tus:6.6:*:*:*:*:*:*:*",
"matchCriteriaId": "13E02156-E748-4820-B76F-7074793837E1",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"matchCriteriaId": "E5ED5807-55B7-47C5-97A6-03233F4FBC3A",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
},
{
"nodes": [
{
"cpeMatch": [
{
"criteria": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"matchCriteriaId": "C11E6FB0-C8C0-4527-9AA0-CB9B316F8F43",
"vulnerable": true
},
{
"criteria": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"matchCriteriaId": "DEECE5FC-CACF-4496-A3E7-164736409252",
"vulnerable": true
}
],
"negate": false,
"operator": "OR"
}
]
}
],
"cveTags": [],
"descriptions": [
{
"lang": "en",
"value": "transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step."
},
{
"lang": "es",
"value": "transport.py en la implementaci\u00f3n del servidor SSH de Paramiko, en versiones anteriores a la 1.17.6; versiones 1.18.x anteriores a la 1.18.5; versiones 2.0.x anteriores a la 2.0.8; versiones 2.1.x anteriores a la 2.1.5; versiones 2.2.x anteriores a la 2.2.3; versiones 2.3.x anteriores a la 2.3.2 y versiones 2.4.x anteriores a la 2.4.1, no comprueba adecuadamente si la autenticaci\u00f3n se ha completado antes de procesar otras peticiones, tal y como demuestra channel-open. Un cliente SSH personalizado puede simplemente omitir el paso de autenticaci\u00f3n."
}
],
"id": "CVE-2018-7750",
"lastModified": "2024-11-21T04:12:39.650",
"metrics": {
"cvssMetricV2": [
{
"acInsufInfo": false,
"baseSeverity": "HIGH",
"cvssData": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"source": "nvd@nist.gov",
"type": "Primary",
"userInteractionRequired": false
}
],
"cvssMetricV31": [
{
"cvssData": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9,
"source": "nvd@nist.gov",
"type": "Primary"
}
]
},
"published": "2018-03-13T18:29:00.303",
"references": [
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/103713"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0591"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0646"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1124"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1125"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1213"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1274"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1328"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1525"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1972"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst"
},
{
"source": "cve@mitre.org",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516"
},
{
"source": "cve@mitre.org",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/paramiko/paramiko/issues/1175"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3603-1/"
},
{
"source": "cve@mitre.org",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3603-2/"
},
{
"source": "cve@mitre.org",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/45712/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/103713"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0591"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0646"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1124"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1125"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1213"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1274"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1328"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1525"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1972"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/paramiko/paramiko/issues/1175"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3603-1/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3603-2/"
},
{
"source": "af854a3a-2127-422b-91ae-364da2661108",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/45712/"
}
],
"sourceIdentifier": "cve@mitre.org",
"vulnStatus": "Modified",
"weaknesses": [
{
"description": [
{
"lang": "en",
"value": "CWE-287"
}
],
"source": "nvd@nist.gov",
"type": "Primary"
}
]
}
GHSA-232R-66CG-79PX
Vulnerability from github – Published: 2018-07-12 20:29 – Updated: 2024-10-09 19:47
VLAI
Summary
Paramiko not properly checking authentication before processing other requests
Details
transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.
Severity
9.8 (Critical)
{
"affected": [
{
"package": {
"ecosystem": "PyPI",
"name": "paramiko"
},
"ranges": [
{
"events": [
{
"introduced": "2.0.0"
},
{
"fixed": "2.0.8"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "PyPI",
"name": "paramiko"
},
"ranges": [
{
"events": [
{
"introduced": "2.1.0"
},
{
"fixed": "2.1.5"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "PyPI",
"name": "paramiko"
},
"ranges": [
{
"events": [
{
"introduced": "2.2.0"
},
{
"fixed": "2.2.3"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "PyPI",
"name": "paramiko"
},
"ranges": [
{
"events": [
{
"introduced": "2.3.0"
},
{
"fixed": "2.3.2"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "PyPI",
"name": "paramiko"
},
"ranges": [
{
"events": [
{
"introduced": "2.4.0"
},
{
"fixed": "2.4.1"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"2.4.0"
]
},
{
"package": {
"ecosystem": "PyPI",
"name": "paramiko"
},
"ranges": [
{
"events": [
{
"introduced": "1.18.0"
},
{
"fixed": "1.18.5"
}
],
"type": "ECOSYSTEM"
}
]
},
{
"package": {
"ecosystem": "PyPI",
"name": "paramiko"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.17.6"
}
],
"type": "ECOSYSTEM"
}
]
}
],
"aliases": [
"CVE-2018-7750"
],
"database_specific": {
"cwe_ids": [
"CWE-287"
],
"github_reviewed": true,
"github_reviewed_at": "2020-06-16T20:50:58Z",
"nvd_published_at": "2018-03-13T18:29:00Z",
"severity": "CRITICAL"
},
"details": "transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.",
"id": "GHSA-232r-66cg-79px",
"modified": "2024-10-09T19:47:17Z",
"published": "2018-07-12T20:29:30Z",
"references": [
{
"type": "ADVISORY",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7750"
},
{
"type": "WEB",
"url": "https://github.com/paramiko/paramiko/issues/1175"
},
{
"type": "WEB",
"url": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516"
},
{
"type": "WEB",
"url": "https://github.com/paramiko/paramiko/commit/e9dfd854bdaf8af15d7834f7502a0451d217bb8c"
},
{
"type": "WEB",
"url": "https://www.exploit-db.com/exploits/45712"
},
{
"type": "WEB",
"url": "https://web.archive.org/web/20190831123128/http://www.securityfocus.com/bid/103713"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3603-2"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3603-1"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html"
},
{
"type": "WEB",
"url": "https://github.com/pypa/advisory-database/tree/main/vulns/paramiko/PYSEC-2018-19.yaml"
},
{
"type": "WEB",
"url": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst"
},
{
"type": "WEB",
"url": "https://github.com/paramiko/paramiko/blob/e861c7697622774071ce73b46ffe8817eacdedfa/sites/www/changelog.rst?plain=1#L759-L763"
},
{
"type": "PACKAGE",
"url": "https://github.com/paramiko/paramiko"
},
{
"type": "ADVISORY",
"url": "https://github.com/advisories/GHSA-232r-66cg-79px"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:1972"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:1525"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:1328"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:1274"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:1213"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:1125"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:1124"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:0646"
},
{
"type": "WEB",
"url": "https://access.redhat.com/errata/RHSA-2018:0591"
}
],
"schema_version": "1.4.0",
"severity": [
{
"score": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"type": "CVSS_V3"
},
{
"score": "CVSS:4.0/AV:N/AC:L/AT:N/PR:N/UI:N/VC:H/VI:H/VA:H/SC:N/SI:N/SA:N",
"type": "CVSS_V4"
}
],
"summary": "Paramiko not properly checking authentication before processing other requests"
}
GSD-2018-7750
Vulnerability from gsd - Updated: 2023-12-13 01:22Details
transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.
Aliases
Aliases
{
"GSD": {
"alias": "CVE-2018-7750",
"description": "transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.",
"id": "GSD-2018-7750",
"references": [
"https://www.suse.com/security/cve/CVE-2018-7750.html",
"https://access.redhat.com/errata/RHSA-2018:1972",
"https://access.redhat.com/errata/RHSA-2018:1525",
"https://access.redhat.com/errata/RHSA-2018:1328",
"https://access.redhat.com/errata/RHSA-2018:1274",
"https://access.redhat.com/errata/RHSA-2018:1213",
"https://access.redhat.com/errata/RHSA-2018:1125",
"https://access.redhat.com/errata/RHSA-2018:1124",
"https://access.redhat.com/errata/RHSA-2018:0646",
"https://access.redhat.com/errata/RHSA-2018:0591",
"https://ubuntu.com/security/CVE-2018-7750",
"https://advisories.mageia.org/CVE-2018-7750.html",
"https://alas.aws.amazon.com/cve/html/CVE-2018-7750.html",
"https://linux.oracle.com/cve/CVE-2018-7750.html",
"https://packetstormsecurity.com/files/cve/CVE-2018-7750"
]
},
"gsd": {
"metadata": {
"exploitCode": "unknown",
"remediation": "unknown",
"reportConfidence": "confirmed",
"type": "vulnerability"
},
"osvSchema": {
"aliases": [
"CVE-2018-7750"
],
"details": "transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.",
"id": "GSD-2018-7750",
"modified": "2023-12-13T01:22:32.976525Z",
"schema_version": "1.4.0"
}
},
"namespaces": {
"cve.org": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-7750",
"STATE": "PUBLIC"
},
"affects": {
"vendor": {
"vendor_data": [
{
"product": {
"product_data": [
{
"product_name": "n/a",
"version": {
"version_data": [
{
"version_value": "n/a"
}
]
}
}
]
},
"vendor_name": "n/a"
}
]
}
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "eng",
"value": "transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "eng",
"value": "n/a"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "RHSA-2018:1124",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1124"
},
{
"name": "45712",
"refsource": "EXPLOIT-DB",
"url": "https://www.exploit-db.com/exploits/45712/"
},
{
"name": "https://github.com/paramiko/paramiko/issues/1175",
"refsource": "CONFIRM",
"url": "https://github.com/paramiko/paramiko/issues/1175"
},
{
"name": "RHSA-2018:1125",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1125"
},
{
"name": "RHSA-2018:1972",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1972"
},
{
"name": "RHSA-2018:1274",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1274"
},
{
"name": "[debian-lts-announce] 20181027 [SECURITY] [DLA 1556-1] paramiko security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html"
},
{
"name": "USN-3603-2",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3603-2/"
},
{
"name": "RHSA-2018:0646",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0646"
},
{
"name": "RHSA-2018:1213",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1213"
},
{
"name": "USN-3603-1",
"refsource": "UBUNTU",
"url": "https://usn.ubuntu.com/3603-1/"
},
{
"name": "RHSA-2018:1525",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1525"
},
{
"name": "RHSA-2018:1328",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:1328"
},
{
"name": "RHSA-2018:0591",
"refsource": "REDHAT",
"url": "https://access.redhat.com/errata/RHSA-2018:0591"
},
{
"name": "103713",
"refsource": "BID",
"url": "http://www.securityfocus.com/bid/103713"
},
{
"name": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516",
"refsource": "CONFIRM",
"url": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516"
},
{
"name": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst",
"refsource": "CONFIRM",
"url": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst"
},
{
"name": "[debian-lts-announce] 20211228 [SECURITY] [DLA 2860-1] paramiko security update",
"refsource": "MLIST",
"url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html"
}
]
}
},
"gitlab.com": {
"advisories": [
{
"affected_range": "==2.0||==2.4",
"affected_versions": "Version 2.0, version 2.4",
"cvss_v2": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"cvss_v3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"cwe_ids": [
"CWE-1035",
"CWE-287",
"CWE-937"
],
"date": "2019-02-28",
"description": "`transport.py` in the SSH server implementation of Paramiko does not properly check whether authentication is completed before processing other requests, as demonstrated by `channel-open`. A customized SSH client can simply skip the authentication step.",
"fixed_versions": [
"2.0.0.1",
"2.4.1.0"
],
"identifier": "CVE-2018-7750",
"identifiers": [
"CVE-2018-7750"
],
"not_impacted": "All versions before 2.0, all versions after 2.0 before 2.4, all versions after 2.4",
"package_slug": "pypi/ansible",
"pubdate": "2018-03-13",
"solution": "Upgrade to versions 2.0.0.1, 2.4.1.0 or above.",
"title": "Improper Authentication",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2018-7750",
"http://www.securityfocus.com/bid/103713",
"https://github.com/paramiko/paramiko/issues/1175",
"https://www.exploit-db.com/exploits/45712/"
],
"uuid": "ca95b0ce-5a90-4b29-9218-983694dd86fa"
},
{
"affected_range": "\u003c1.17.6||\u003e=1.18.0,\u003c1.18.5||\u003e=2.0.0,\u003c2.0.8||\u003e=2.1.0,\u003c2.1.5||\u003e=2.2.0,\u003c2.2.3||\u003e=2.3.0,\u003c2.3.2||==2.4.0",
"affected_versions": "All versions before 1.17.6, all versions starting from 1.18.0 before 1.18.5, all versions starting from 2.0.0 before 2.0.8, all versions starting from 2.1.0 before 2.1.5, all versions starting from 2.2.0 before 2.2.3, all versions starting from 2.3.0 before 2.3.2, version 2.4.0",
"cvss_v2": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"cvss_v3": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"cwe_ids": [
"CWE-1035",
"CWE-287",
"CWE-937"
],
"date": "2019-02-28",
"description": "`transport.py` in the SSH server implementation of Paramiko does not properly check whether authentication is completed before processing other requests. A customized SSH client can simply skip the authentication step.",
"fixed_versions": [
"1.17.6",
"1.18.5",
"2.0.8",
"2.1.5",
"2.2.3",
"2.3.2",
"2.4.1"
],
"identifier": "CVE-2018-7750",
"identifiers": [
"CVE-2018-7750"
],
"not_impacted": "All versions starting from 1.17.6 before 1.18.0, all versions starting from 1.18.5 before 2.0.0, all versions starting from 2.0.8 before 2.1.0, all versions starting from 2.1.5 before 2.2.0, all versions starting from 2.2.3 before 2.3.0, all versions starting from 2.3.2 before 2.4.0, all versions after 2.4.0",
"package_slug": "pypi/paramiko",
"pubdate": "2018-03-13",
"solution": "Upgrade to versions 1.17.6, 1.18.5, 2.0.8, 2.1.5, 2.2.3, 2.3.2, 2.4.1 or above.",
"title": "Improper Authentication",
"urls": [
"https://nvd.nist.gov/vuln/detail/CVE-2018-7750",
"http://www.securityfocus.com/bid/103713",
"https://github.com/paramiko/paramiko/issues/1175",
"https://www.exploit-db.com/exploits/45712/"
],
"uuid": "f8c6ffd1-df1e-4813-8fb2-80ad826e76ea"
}
]
},
"nvd.nist.gov": {
"configurations": {
"CVE_data_version": "4.0",
"nodes": [
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "1.17.6",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.0.8",
"versionStartIncluding": "2.0.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.1.5",
"versionStartIncluding": "2.1.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.2.3",
"versionStartIncluding": "2.2.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "2.3.2",
"versionStartIncluding": "2.3.0",
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:paramiko:paramiko:2.4.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*",
"cpe_name": [],
"versionEndExcluding": "1.18.5",
"versionStartIncluding": "1.18.0",
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:a:redhat:ansible_engine:2.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:ansible_engine:2.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:cloudforms:4.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:cloudforms:4.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:a:redhat:virtualization:4.1:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_desktop:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server:7.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.4:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.5:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_aus:6.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_eus:6.7:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_server_tus:6.6:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:redhat:enterprise_linux_workstation:6.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
},
{
"children": [],
"cpe_match": [
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:8.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
},
{
"cpe23Uri": "cpe:2.3:o:debian:debian_linux:9.0:*:*:*:*:*:*:*",
"cpe_name": [],
"vulnerable": true
}
],
"operator": "OR"
}
]
},
"cve": {
"CVE_data_meta": {
"ASSIGNER": "cve@mitre.org",
"ID": "CVE-2018-7750"
},
"data_format": "MITRE",
"data_type": "CVE",
"data_version": "4.0",
"description": {
"description_data": [
{
"lang": "en",
"value": "transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step."
}
]
},
"problemtype": {
"problemtype_data": [
{
"description": [
{
"lang": "en",
"value": "CWE-287"
}
]
}
]
},
"references": {
"reference_data": [
{
"name": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516",
"refsource": "CONFIRM",
"tags": [
"Patch",
"Third Party Advisory"
],
"url": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516"
},
{
"name": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst",
"refsource": "CONFIRM",
"tags": [
"Third Party Advisory"
],
"url": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst"
},
{
"name": "https://github.com/paramiko/paramiko/issues/1175",
"refsource": "CONFIRM",
"tags": [
"Issue Tracking",
"Third Party Advisory"
],
"url": "https://github.com/paramiko/paramiko/issues/1175"
},
{
"name": "USN-3603-2",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3603-2/"
},
{
"name": "RHSA-2018:0591",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0591"
},
{
"name": "USN-3603-1",
"refsource": "UBUNTU",
"tags": [
"Third Party Advisory"
],
"url": "https://usn.ubuntu.com/3603-1/"
},
{
"name": "RHSA-2018:0646",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:0646"
},
{
"name": "RHSA-2018:1125",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1125"
},
{
"name": "RHSA-2018:1124",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1124"
},
{
"name": "RHSA-2018:1213",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1213"
},
{
"name": "103713",
"refsource": "BID",
"tags": [
"Third Party Advisory",
"VDB Entry"
],
"url": "http://www.securityfocus.com/bid/103713"
},
{
"name": "RHSA-2018:1274",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1274"
},
{
"name": "RHSA-2018:1328",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1328"
},
{
"name": "RHSA-2018:1525",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1525"
},
{
"name": "RHSA-2018:1972",
"refsource": "REDHAT",
"tags": [
"Third Party Advisory"
],
"url": "https://access.redhat.com/errata/RHSA-2018:1972"
},
{
"name": "[debian-lts-announce] 20181027 [SECURITY] [DLA 1556-1] paramiko security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html"
},
{
"name": "45712",
"refsource": "EXPLOIT-DB",
"tags": [
"Exploit",
"Third Party Advisory",
"VDB Entry"
],
"url": "https://www.exploit-db.com/exploits/45712/"
},
{
"name": "[debian-lts-announce] 20211228 [SECURITY] [DLA 2860-1] paramiko security update",
"refsource": "MLIST",
"tags": [
"Mailing List",
"Third Party Advisory"
],
"url": "https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html"
}
]
}
},
"impact": {
"baseMetricV2": {
"acInsufInfo": false,
"cvssV2": {
"accessComplexity": "LOW",
"accessVector": "NETWORK",
"authentication": "NONE",
"availabilityImpact": "PARTIAL",
"baseScore": 7.5,
"confidentialityImpact": "PARTIAL",
"integrityImpact": "PARTIAL",
"vectorString": "AV:N/AC:L/Au:N/C:P/I:P/A:P",
"version": "2.0"
},
"exploitabilityScore": 10.0,
"impactScore": 6.4,
"obtainAllPrivilege": false,
"obtainOtherPrivilege": false,
"obtainUserPrivilege": false,
"severity": "HIGH",
"userInteractionRequired": false
},
"baseMetricV3": {
"cvssV3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.1"
},
"exploitabilityScore": 3.9,
"impactScore": 5.9
}
},
"lastModifiedDate": "2022-04-18T17:30Z",
"publishedDate": "2018-03-13T18:29Z"
}
}
}
OPENSUSE-SU-2024:11249-1
Vulnerability from csaf_opensuse - Published: 2024-06-15 00:00 - Updated: 2024-06-15 00:00Summary
python-paramiko-doc-2.7.2-3.7 on GA media
Severity
Moderate
Notes
Title of the patch: python-paramiko-doc-2.7.2-3.7 on GA media
Description of the patch: These are all security issues fixed in the python-paramiko-doc-2.7.2-3.7 package on the GA media of openSUSE Tumbleweed.
Patchnames: openSUSE-Tumbleweed-2024-11249
Terms of use: CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).
9.8 (Critical)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.x86_64 | — |
Vendor Fix
|
Threats
Impact
critical
10 (Critical)
Affected products
Recommended
16 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.x86_64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.aarch64 | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.ppc64le | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.s390x | — |
Vendor Fix
|
|
| Unresolved product id: openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.x86_64 | — |
Vendor Fix
|
Threats
Impact
important
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://www.suse.com/support/security/rating/",
"text": "moderate"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright 2024 SUSE LLC. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "python-paramiko-doc-2.7.2-3.7 on GA media",
"title": "Title of the patch"
},
{
"category": "description",
"text": "These are all security issues fixed in the python-paramiko-doc-2.7.2-3.7 package on the GA media of openSUSE Tumbleweed.",
"title": "Description of the patch"
},
{
"category": "details",
"text": "openSUSE-Tumbleweed-2024-11249",
"title": "Patchnames"
},
{
"category": "legal_disclaimer",
"text": "CSAF 2.0 data is provided by SUSE under the Creative Commons License 4.0 with Attribution (CC-BY-4.0).",
"title": "Terms of use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://www.suse.com/support/security/contact/",
"name": "SUSE Product Security Team",
"namespace": "https://www.suse.com/"
},
"references": [
{
"category": "external",
"summary": "SUSE ratings",
"url": "https://www.suse.com/support/security/rating/"
},
{
"category": "self",
"summary": "URL of this CSAF notice",
"url": "https://ftp.suse.com/pub/projects/security/csaf/opensuse-su-2024_11249-1.json"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-1000805 page",
"url": "https://www.suse.com/security/cve/CVE-2018-1000805/"
},
{
"category": "self",
"summary": "SUSE CVE CVE-2018-7750 page",
"url": "https://www.suse.com/security/cve/CVE-2018-7750/"
}
],
"title": "python-paramiko-doc-2.7.2-3.7 on GA media",
"tracking": {
"current_release_date": "2024-06-15T00:00:00Z",
"generator": {
"date": "2024-06-15T00:00:00Z",
"engine": {
"name": "cve-database.git:bin/generate-csaf.pl",
"version": "1"
}
},
"id": "openSUSE-SU-2024:11249-1",
"initial_release_date": "2024-06-15T00:00:00Z",
"revision_history": [
{
"date": "2024-06-15T00:00:00Z",
"number": "1",
"summary": "Current version"
}
],
"status": "final",
"version": "1"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_version",
"name": "python-paramiko-doc-2.7.2-3.7.aarch64",
"product": {
"name": "python-paramiko-doc-2.7.2-3.7.aarch64",
"product_id": "python-paramiko-doc-2.7.2-3.7.aarch64"
}
},
{
"category": "product_version",
"name": "python36-paramiko-2.7.2-3.7.aarch64",
"product": {
"name": "python36-paramiko-2.7.2-3.7.aarch64",
"product_id": "python36-paramiko-2.7.2-3.7.aarch64"
}
},
{
"category": "product_version",
"name": "python38-paramiko-2.7.2-3.7.aarch64",
"product": {
"name": "python38-paramiko-2.7.2-3.7.aarch64",
"product_id": "python38-paramiko-2.7.2-3.7.aarch64"
}
},
{
"category": "product_version",
"name": "python39-paramiko-2.7.2-3.7.aarch64",
"product": {
"name": "python39-paramiko-2.7.2-3.7.aarch64",
"product_id": "python39-paramiko-2.7.2-3.7.aarch64"
}
}
],
"category": "architecture",
"name": "aarch64"
},
{
"branches": [
{
"category": "product_version",
"name": "python-paramiko-doc-2.7.2-3.7.ppc64le",
"product": {
"name": "python-paramiko-doc-2.7.2-3.7.ppc64le",
"product_id": "python-paramiko-doc-2.7.2-3.7.ppc64le"
}
},
{
"category": "product_version",
"name": "python36-paramiko-2.7.2-3.7.ppc64le",
"product": {
"name": "python36-paramiko-2.7.2-3.7.ppc64le",
"product_id": "python36-paramiko-2.7.2-3.7.ppc64le"
}
},
{
"category": "product_version",
"name": "python38-paramiko-2.7.2-3.7.ppc64le",
"product": {
"name": "python38-paramiko-2.7.2-3.7.ppc64le",
"product_id": "python38-paramiko-2.7.2-3.7.ppc64le"
}
},
{
"category": "product_version",
"name": "python39-paramiko-2.7.2-3.7.ppc64le",
"product": {
"name": "python39-paramiko-2.7.2-3.7.ppc64le",
"product_id": "python39-paramiko-2.7.2-3.7.ppc64le"
}
}
],
"category": "architecture",
"name": "ppc64le"
},
{
"branches": [
{
"category": "product_version",
"name": "python-paramiko-doc-2.7.2-3.7.s390x",
"product": {
"name": "python-paramiko-doc-2.7.2-3.7.s390x",
"product_id": "python-paramiko-doc-2.7.2-3.7.s390x"
}
},
{
"category": "product_version",
"name": "python36-paramiko-2.7.2-3.7.s390x",
"product": {
"name": "python36-paramiko-2.7.2-3.7.s390x",
"product_id": "python36-paramiko-2.7.2-3.7.s390x"
}
},
{
"category": "product_version",
"name": "python38-paramiko-2.7.2-3.7.s390x",
"product": {
"name": "python38-paramiko-2.7.2-3.7.s390x",
"product_id": "python38-paramiko-2.7.2-3.7.s390x"
}
},
{
"category": "product_version",
"name": "python39-paramiko-2.7.2-3.7.s390x",
"product": {
"name": "python39-paramiko-2.7.2-3.7.s390x",
"product_id": "python39-paramiko-2.7.2-3.7.s390x"
}
}
],
"category": "architecture",
"name": "s390x"
},
{
"branches": [
{
"category": "product_version",
"name": "python-paramiko-doc-2.7.2-3.7.x86_64",
"product": {
"name": "python-paramiko-doc-2.7.2-3.7.x86_64",
"product_id": "python-paramiko-doc-2.7.2-3.7.x86_64"
}
},
{
"category": "product_version",
"name": "python36-paramiko-2.7.2-3.7.x86_64",
"product": {
"name": "python36-paramiko-2.7.2-3.7.x86_64",
"product_id": "python36-paramiko-2.7.2-3.7.x86_64"
}
},
{
"category": "product_version",
"name": "python38-paramiko-2.7.2-3.7.x86_64",
"product": {
"name": "python38-paramiko-2.7.2-3.7.x86_64",
"product_id": "python38-paramiko-2.7.2-3.7.x86_64"
}
},
{
"category": "product_version",
"name": "python39-paramiko-2.7.2-3.7.x86_64",
"product": {
"name": "python39-paramiko-2.7.2-3.7.x86_64",
"product_id": "python39-paramiko-2.7.2-3.7.x86_64"
}
}
],
"category": "architecture",
"name": "x86_64"
},
{
"branches": [
{
"category": "product_name",
"name": "openSUSE Tumbleweed",
"product": {
"name": "openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed",
"product_identification_helper": {
"cpe": "cpe:/o:opensuse:tumbleweed"
}
}
}
],
"category": "product_family",
"name": "SUSE Linux Enterprise"
}
],
"category": "vendor",
"name": "SUSE"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-doc-2.7.2-3.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.aarch64"
},
"product_reference": "python-paramiko-doc-2.7.2-3.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-doc-2.7.2-3.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.ppc64le"
},
"product_reference": "python-paramiko-doc-2.7.2-3.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-doc-2.7.2-3.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.s390x"
},
"product_reference": "python-paramiko-doc-2.7.2-3.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-doc-2.7.2-3.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.x86_64"
},
"product_reference": "python-paramiko-doc-2.7.2-3.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python36-paramiko-2.7.2-3.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.aarch64"
},
"product_reference": "python36-paramiko-2.7.2-3.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python36-paramiko-2.7.2-3.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.ppc64le"
},
"product_reference": "python36-paramiko-2.7.2-3.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python36-paramiko-2.7.2-3.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.s390x"
},
"product_reference": "python36-paramiko-2.7.2-3.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python36-paramiko-2.7.2-3.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.x86_64"
},
"product_reference": "python36-paramiko-2.7.2-3.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-paramiko-2.7.2-3.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.aarch64"
},
"product_reference": "python38-paramiko-2.7.2-3.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-paramiko-2.7.2-3.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.ppc64le"
},
"product_reference": "python38-paramiko-2.7.2-3.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-paramiko-2.7.2-3.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.s390x"
},
"product_reference": "python38-paramiko-2.7.2-3.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python38-paramiko-2.7.2-3.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.x86_64"
},
"product_reference": "python38-paramiko-2.7.2-3.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-paramiko-2.7.2-3.7.aarch64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.aarch64"
},
"product_reference": "python39-paramiko-2.7.2-3.7.aarch64",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-paramiko-2.7.2-3.7.ppc64le as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.ppc64le"
},
"product_reference": "python39-paramiko-2.7.2-3.7.ppc64le",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-paramiko-2.7.2-3.7.s390x as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.s390x"
},
"product_reference": "python39-paramiko-2.7.2-3.7.s390x",
"relates_to_product_reference": "openSUSE Tumbleweed"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python39-paramiko-2.7.2-3.7.x86_64 as component of openSUSE Tumbleweed",
"product_id": "openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.x86_64"
},
"product_reference": "python39-paramiko-2.7.2-3.7.x86_64",
"relates_to_product_reference": "openSUSE Tumbleweed"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-1000805",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-1000805"
}
],
"notes": [
{
"category": "general",
"text": "Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 contains a Incorrect Access Control vulnerability in SSH server that can result in RCE. This attack appear to be exploitable via network connectivity.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-1000805",
"url": "https://www.suse.com/security/cve/CVE-2018-1000805"
},
{
"category": "external",
"summary": "SUSE Bug 1111151 for CVE-2018-1000805",
"url": "https://bugzilla.suse.com/1111151"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "critical"
}
],
"title": "CVE-2018-1000805"
},
{
"cve": "CVE-2018-7750",
"ids": [
{
"system_name": "SUSE CVE Page",
"text": "https://www.suse.com/security/cve/CVE-2018-7750"
}
],
"notes": [
{
"category": "general",
"text": "transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.",
"title": "CVE description"
}
],
"product_status": {
"recommended": [
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.x86_64"
]
},
"references": [
{
"category": "external",
"summary": "CVE-2018-7750",
"url": "https://www.suse.com/security/cve/CVE-2018-7750"
},
{
"category": "external",
"summary": "SUSE Bug 1085276 for CVE-2018-7750",
"url": "https://bugzilla.suse.com/1085276"
},
{
"category": "external",
"summary": "SUSE Bug 1111151 for CVE-2018-7750",
"url": "https://bugzilla.suse.com/1111151"
}
],
"remediations": [
{
"category": "vendor_fix",
"details": "To install this SUSE Security Update use the SUSE recommended installation methods like YaST online_update or \"zypper patch\".\n",
"product_ids": [
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.x86_64"
]
}
],
"scores": [
{
"cvss_v3": {
"baseScore": 10,
"baseSeverity": "CRITICAL",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:C/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python-paramiko-doc-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python36-paramiko-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python38-paramiko-2.7.2-3.7.x86_64",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.aarch64",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.ppc64le",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.s390x",
"openSUSE Tumbleweed:python39-paramiko-2.7.2-3.7.x86_64"
]
}
],
"threats": [
{
"category": "impact",
"date": "2024-06-15T00:00:00Z",
"details": "important"
}
],
"title": "CVE-2018-7750"
}
]
}
PYSEC-2018-19
Vulnerability from pysec - Published: 2018-03-13 18:29 - Updated: 2021-06-10 06:50
VLAI
Details
transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.
Impacted products
| Name | purl | paramiko | pkg:pypi/paramiko |
|---|
Aliases
{
"affected": [
{
"package": {
"ecosystem": "PyPI",
"name": "paramiko",
"purl": "pkg:pypi/paramiko"
},
"ranges": [
{
"events": [
{
"introduced": "0"
},
{
"fixed": "fa29bd8446c8eab237f5187d28787727b4610516"
}
],
"repo": "https://github.com/paramiko/paramiko",
"type": "GIT"
},
{
"events": [
{
"introduced": "0"
},
{
"fixed": "1.17.6"
},
{
"introduced": "2.0.0"
},
{
"fixed": "2.0.8"
},
{
"introduced": "2.1.0"
},
{
"fixed": "2.1.5"
},
{
"introduced": "2.2.0"
},
{
"fixed": "2.2.3"
},
{
"introduced": "2.3.0"
},
{
"fixed": "2.3.2"
},
{
"introduced": "1.18.0"
},
{
"fixed": "1.18.5"
}
],
"type": "ECOSYSTEM"
}
],
"versions": [
"0.1-bulbasaur",
"0.1-charmander",
"0.9-doduo",
"0.9-eevee",
"0.9-fearow",
"0.9-gyarados",
"0.9-horsea",
"0.9-ivysaur",
"1.0",
"1.1",
"1.10.0",
"1.10.1",
"1.10.2",
"1.10.3",
"1.10.4",
"1.10.5",
"1.10.6",
"1.10.7",
"1.11.0",
"1.11.1",
"1.11.2",
"1.11.3",
"1.11.4",
"1.11.5",
"1.11.6",
"1.12.0",
"1.12.1",
"1.12.2",
"1.12.3",
"1.12.4",
"1.13.0",
"1.13.1",
"1.13.2",
"1.13.3",
"1.13.4",
"1.14.0",
"1.14.1",
"1.14.2",
"1.14.3",
"1.15.0",
"1.15.1",
"1.15.2",
"1.15.3",
"1.15.4",
"1.15.5",
"1.16.0",
"1.16.1",
"1.16.2",
"1.16.3",
"1.17.0",
"1.17.1",
"1.17.2",
"1.17.3",
"1.17.4",
"1.17.5",
"1.18.0",
"1.18.1",
"1.18.2",
"1.18.3",
"1.18.4",
"1.2",
"1.3",
"1.3.1",
"1.4",
"1.5.1",
"1.5.2",
"1.5.4",
"1.6",
"1.6.1",
"1.6.2",
"1.6.3",
"1.6.4",
"1.7",
"1.7.1",
"1.7.2",
"1.7.4",
"1.7.5",
"1.7.6",
"1.7.7.1",
"1.7.7.2",
"1.8.0",
"1.8.1",
"1.9.0",
"2.0.0",
"2.0.1",
"2.0.2",
"2.0.3",
"2.0.4",
"2.0.5",
"2.0.6",
"2.0.7",
"2.1.0",
"2.1.1",
"2.1.2",
"2.1.3",
"2.1.4",
"2.2.0",
"2.2.1",
"2.2.2",
"2.3.0",
"2.3.1"
]
}
],
"aliases": [
"CVE-2018-7750",
"GHSA-232r-66cg-79px"
],
"details": "transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.",
"id": "PYSEC-2018-19",
"modified": "2021-06-10T06:50:48.065198Z",
"published": "2018-03-13T18:29:00Z",
"references": [
{
"type": "FIX",
"url": "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516"
},
{
"type": "WEB",
"url": "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst"
},
{
"type": "REPORT",
"url": "https://github.com/paramiko/paramiko/issues/1175"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3603-2/"
},
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2018:0591"
},
{
"type": "WEB",
"url": "https://usn.ubuntu.com/3603-1/"
},
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2018:0646"
},
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2018:1125"
},
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2018:1124"
},
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2018:1213"
},
{
"type": "WEB",
"url": "http://www.securityfocus.com/bid/103713"
},
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2018:1274"
},
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2018:1328"
},
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2018:1525"
},
{
"type": "ADVISORY",
"url": "https://access.redhat.com/errata/RHSA-2018:1972"
},
{
"type": "WEB",
"url": "https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html"
},
{
"type": "WEB",
"url": "https://www.exploit-db.com/exploits/45712/"
},
{
"type": "ADVISORY",
"url": "https://github.com/advisories/GHSA-232r-66cg-79px"
}
]
}
RHSA-2018:0591
Vulnerability from csaf_redhat - Published: 2018-03-26 14:45 - Updated: 2025-11-21 18:04Summary
Red Hat Security Advisory: python-paramiko security and bug fix update
Severity
Critical
Notes
Topic: An update for python-paramiko is now available for Red Hat Enterprise Linux 7 Extras.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The python-paramiko package provides a Python module that implements the SSH2 protocol for encrypted and authenticated connections to remote machines. Unlike SSL, the SSH2 protocol does not require hierarchical certificates signed by a powerful central authority. The protocol also includes the ability to open arbitrary channels to remote services across an encrypted tunnel.
Security Fix(es):
* python-paramiko: Authentication bypass in transport.py (CVE-2018-7750)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Bug Fix(es):
* python-paramiko has been using the python2-pyasn1 package, but did not depend on it. With new versions of python2-cryptography, python2-pyasn1 was not getting installed and this caused python-paramiko to malfunction. This bug was fixed by making python-paramiko depend on python2-pyasn1 explicitly. (BZ#1559133)
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
It was found that when acting as an SSH server, paramiko did not properly check whether authentication is completed before processing other requests. A customized SSH client could use this to bypass authentication when accessing any resources controlled by paramiko.
9.8 (Critical)
Affected products
Fixed
3 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 7Server-EXTRAS-7.4:python-paramiko-0:2.1.1-4.el7.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-EXTRAS-7.4:python-paramiko-0:2.1.1-4.el7.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 7Server-EXTRAS-7.4:python-paramiko-doc-0:2.1.1-4.el7.noarch | — |
Vendor Fix
fix
|
Threats
Impact
Critical
References
9 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for python-paramiko is now available for Red Hat Enterprise Linux 7 Extras.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The python-paramiko package provides a Python module that implements the SSH2 protocol for encrypted and authenticated connections to remote machines. Unlike SSL, the SSH2 protocol does not require hierarchical certificates signed by a powerful central authority. The protocol also includes the ability to open arbitrary channels to remote services across an encrypted tunnel.\n\nSecurity Fix(es):\n\n* python-paramiko: Authentication bypass in transport.py (CVE-2018-7750)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.\n\nBug Fix(es):\n\n* python-paramiko has been using the python2-pyasn1 package, but did not depend on it. With new versions of python2-cryptography, python2-pyasn1 was not getting installed and this caused python-paramiko to malfunction. This bug was fixed by making python-paramiko depend on python2-pyasn1 explicitly. (BZ#1559133)",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0591",
"url": "https://access.redhat.com/errata/RHSA-2018:0591"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "1557130",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1557130"
},
{
"category": "external",
"summary": "1559133",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1559133"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0591.json"
}
],
"title": "Red Hat Security Advisory: python-paramiko security and bug fix update",
"tracking": {
"current_release_date": "2025-11-21T18:04:08+00:00",
"generator": {
"date": "2025-11-21T18:04:08+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2018:0591",
"initial_release_date": "2018-03-26T14:45:14+00:00",
"revision_history": [
{
"date": "2018-03-26T14:45:14+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-03-26T14:45:14+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:04:08+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux 7 Extras",
"product": {
"name": "Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.4",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:rhel_extras_other:7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux Extras"
},
{
"branches": [
{
"category": "product_version",
"name": "python-paramiko-doc-0:2.1.1-4.el7.noarch",
"product": {
"name": "python-paramiko-doc-0:2.1.1-4.el7.noarch",
"product_id": "python-paramiko-doc-0:2.1.1-4.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-paramiko-doc@2.1.1-4.el7?arch=noarch"
}
}
},
{
"category": "product_version",
"name": "python-paramiko-0:2.1.1-4.el7.noarch",
"product": {
"name": "python-paramiko-0:2.1.1-4.el7.noarch",
"product_id": "python-paramiko-0:2.1.1-4.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-paramiko@2.1.1-4.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
},
{
"branches": [
{
"category": "product_version",
"name": "python-paramiko-0:2.1.1-4.el7.src",
"product": {
"name": "python-paramiko-0:2.1.1-4.el7.src",
"product_id": "python-paramiko-0:2.1.1-4.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-paramiko@2.1.1-4.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-0:2.1.1-4.el7.noarch as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.4:python-paramiko-0:2.1.1-4.el7.noarch"
},
"product_reference": "python-paramiko-0:2.1.1-4.el7.noarch",
"relates_to_product_reference": "7Server-EXTRAS-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-0:2.1.1-4.el7.src as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.4:python-paramiko-0:2.1.1-4.el7.src"
},
"product_reference": "python-paramiko-0:2.1.1-4.el7.src",
"relates_to_product_reference": "7Server-EXTRAS-7.4"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-doc-0:2.1.1-4.el7.noarch as a component of Red Hat Enterprise Linux 7 Extras",
"product_id": "7Server-EXTRAS-7.4:python-paramiko-doc-0:2.1.1-4.el7.noarch"
},
"product_reference": "python-paramiko-doc-0:2.1.1-4.el7.noarch",
"relates_to_product_reference": "7Server-EXTRAS-7.4"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-7750",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2018-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1557130"
}
],
"notes": [
{
"category": "description",
"text": "It was found that when acting as an SSH server, paramiko did not properly check whether authentication is completed before processing other requests. A customized SSH client could use this to bypass authentication when accessing any resources controlled by paramiko.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-paramiko: Authentication bypass in transport.py",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is a user authentication bypass in the SSH Server functionality of paramiko (normally used by subclassing `paramiko.ServerInterface`). Where paramiko is used only for its client-side functionality (e.g. `paramiko.SSHClient`), the vulnerability is not exposed and thus cannot be exploited.\n\nThe following Red Hat products use paramiko only in client-side mode. Server side functionality is not used.\n\n* Red Hat Ceph Storage 2\n* Red Hat CloudForms 4\n* Red Hat Enterprise Linux 7\n* Red Hat Enterprise Virtualization\n* Red Hat Gluster Storage 3\n* Red Hat Openshift Container Platform\n* Red Hat Quick Cloud Installer\n* Red Hat Satellite 6\n* Red Hat Storage Console 2\n* Red Hat OpenStack Platform\n* Red Hat Update Infrastructure",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-EXTRAS-7.4:python-paramiko-0:2.1.1-4.el7.noarch",
"7Server-EXTRAS-7.4:python-paramiko-0:2.1.1-4.el7.src",
"7Server-EXTRAS-7.4:python-paramiko-doc-0:2.1.1-4.el7.noarch"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-7750"
},
{
"category": "external",
"summary": "RHBZ#1557130",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1557130"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-7750",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7750"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-7750",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7750"
}
],
"release_date": "2018-03-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-03-26T14:45:14+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-EXTRAS-7.4:python-paramiko-0:2.1.1-4.el7.noarch",
"7Server-EXTRAS-7.4:python-paramiko-0:2.1.1-4.el7.src",
"7Server-EXTRAS-7.4:python-paramiko-doc-0:2.1.1-4.el7.noarch"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0591"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-EXTRAS-7.4:python-paramiko-0:2.1.1-4.el7.noarch",
"7Server-EXTRAS-7.4:python-paramiko-0:2.1.1-4.el7.src",
"7Server-EXTRAS-7.4:python-paramiko-doc-0:2.1.1-4.el7.noarch"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "python-paramiko: Authentication bypass in transport.py"
}
]
}
RHSA-2018:0646
Vulnerability from csaf_redhat - Published: 2018-04-05 16:39 - Updated: 2025-11-21 18:04Summary
Red Hat Security Advisory: python-paramiko security update
Severity
Low
Notes
Topic: An update for python-paramiko is now available for Red Hat Ansible Engine 2 for RHEL 7.
Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The python-paramiko package provides a Python module that implements the SSH2 protocol for encrypted and authenticated connections to remote machines. Unlike SSL, the SSH2 protocol does not require hierarchical certificates signed by a powerful central authority. The protocol also includes the ability to open arbitrary channels to remote services across an encrypted tunnel.
Security Fix(es):
* python-paramiko: Authentication bypass in transport.py (CVE-2018-7750)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
It was found that when acting as an SSH server, paramiko did not properly check whether authentication is completed before processing other requests. A customized SSH client could use this to bypass authentication when accessing any resources controlled by paramiko.
9.8 (Critical)
Affected products
Threats
Impact
Low
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Low"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for python-paramiko is now available for Red Hat Ansible Engine 2 for RHEL 7.\n\nRed Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The python-paramiko package provides a Python module that implements the SSH2 protocol for encrypted and authenticated connections to remote machines. Unlike SSL, the SSH2 protocol does not require hierarchical certificates signed by a powerful central authority. The protocol also includes the ability to open arbitrary channels to remote services across an encrypted tunnel.\n\nSecurity Fix(es):\n\n* python-paramiko: Authentication bypass in transport.py (CVE-2018-7750)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:0646",
"url": "https://access.redhat.com/errata/RHSA-2018:0646"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#low",
"url": "https://access.redhat.com/security/updates/classification/#low"
},
{
"category": "external",
"summary": "1557130",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1557130"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_0646.json"
}
],
"title": "Red Hat Security Advisory: python-paramiko security update",
"tracking": {
"current_release_date": "2025-11-21T18:04:12+00:00",
"generator": {
"date": "2025-11-21T18:04:12+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2018:0646",
"initial_release_date": "2018-04-05T16:39:00+00:00",
"revision_history": [
{
"date": "2018-04-05T16:39:00+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-04-05T16:39:00+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:04:12+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Ansible Engine 2 for RHEL 7",
"product": {
"name": "Red Hat Ansible Engine 2 for RHEL 7",
"product_id": "7Server-Ansible-2",
"product_identification_helper": {
"cpe": "cpe:/a:redhat:ansible_engine:2::el7"
}
}
}
],
"category": "product_family",
"name": "Red Hat Ansible Engine"
},
{
"branches": [
{
"category": "product_version",
"name": "python-paramiko-0:2.1.1-4.el7.src",
"product": {
"name": "python-paramiko-0:2.1.1-4.el7.src",
"product_id": "python-paramiko-0:2.1.1-4.el7.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-paramiko@2.1.1-4.el7?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "python-paramiko-0:2.1.1-4.el7.noarch",
"product": {
"name": "python-paramiko-0:2.1.1-4.el7.noarch",
"product_id": "python-paramiko-0:2.1.1-4.el7.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-paramiko@2.1.1-4.el7?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-0:2.1.1-4.el7.noarch as a component of Red Hat Ansible Engine 2 for RHEL 7",
"product_id": "7Server-Ansible-2:python-paramiko-0:2.1.1-4.el7.noarch"
},
"product_reference": "python-paramiko-0:2.1.1-4.el7.noarch",
"relates_to_product_reference": "7Server-Ansible-2"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-0:2.1.1-4.el7.src as a component of Red Hat Ansible Engine 2 for RHEL 7",
"product_id": "7Server-Ansible-2:python-paramiko-0:2.1.1-4.el7.src"
},
"product_reference": "python-paramiko-0:2.1.1-4.el7.src",
"relates_to_product_reference": "7Server-Ansible-2"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-7750",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2018-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1557130"
}
],
"notes": [
{
"category": "description",
"text": "It was found that when acting as an SSH server, paramiko did not properly check whether authentication is completed before processing other requests. A customized SSH client could use this to bypass authentication when accessing any resources controlled by paramiko.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-paramiko: Authentication bypass in transport.py",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is a user authentication bypass in the SSH Server functionality of paramiko (normally used by subclassing `paramiko.ServerInterface`). Where paramiko is used only for its client-side functionality (e.g. `paramiko.SSHClient`), the vulnerability is not exposed and thus cannot be exploited.\n\nThe following Red Hat products use paramiko only in client-side mode. Server side functionality is not used.\n\n* Red Hat Ceph Storage 2\n* Red Hat CloudForms 4\n* Red Hat Enterprise Linux 7\n* Red Hat Enterprise Virtualization\n* Red Hat Gluster Storage 3\n* Red Hat Openshift Container Platform\n* Red Hat Quick Cloud Installer\n* Red Hat Satellite 6\n* Red Hat Storage Console 2\n* Red Hat OpenStack Platform\n* Red Hat Update Infrastructure",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"7Server-Ansible-2:python-paramiko-0:2.1.1-4.el7.noarch",
"7Server-Ansible-2:python-paramiko-0:2.1.1-4.el7.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-7750"
},
{
"category": "external",
"summary": "RHBZ#1557130",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1557130"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-7750",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7750"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-7750",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7750"
}
],
"release_date": "2018-03-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-05T16:39:00+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"7Server-Ansible-2:python-paramiko-0:2.1.1-4.el7.noarch",
"7Server-Ansible-2:python-paramiko-0:2.1.1-4.el7.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:0646"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"7Server-Ansible-2:python-paramiko-0:2.1.1-4.el7.noarch",
"7Server-Ansible-2:python-paramiko-0:2.1.1-4.el7.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Low"
}
],
"title": "python-paramiko: Authentication bypass in transport.py"
}
]
}
RHSA-2018:1124
Vulnerability from csaf_redhat - Published: 2018-04-12 21:45 - Updated: 2025-11-21 18:04Summary
Red Hat Security Advisory: python-paramiko security update
Severity
Critical
Notes
Topic: An update for python-paramiko is now available for Red Hat Enterprise Linux 6.
Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.
Details: The python-paramiko package provides a Python module that implements the SSH2 protocol for encrypted and authenticated connections to remote machines. Unlike SSL, the SSH2 protocol does not require hierarchical certificates signed by a powerful central authority. The protocol also includes the ability to open arbitrary channels to remote services across an encrypted tunnel.
Security Fix(es):
* python-paramiko: Authentication bypass in transport.py (CVE-2018-7750)
For more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.
Terms of Use: This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.
It was found that when acting as an SSH server, paramiko did not properly check whether authentication is completed before processing other requests. A customized SSH client could use this to bypass authentication when accessing any resources controlled by paramiko.
9.8 (Critical)
Affected products
Fixed
8 products
| Product | Identifier | Version | Remediation |
|---|---|---|---|
| Unresolved product id: 6Client-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Client-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6ComputeNode-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Server-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch | — |
Vendor Fix
fix
|
|
| Unresolved product id: 6Workstation-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src | — |
Vendor Fix
fix
|
Threats
Impact
Critical
References
8 references
{
"document": {
"aggregate_severity": {
"namespace": "https://access.redhat.com/security/updates/classification/",
"text": "Critical"
},
"category": "csaf_security_advisory",
"csaf_version": "2.0",
"distribution": {
"text": "Copyright \u00a9 Red Hat, Inc. All rights reserved.",
"tlp": {
"label": "WHITE",
"url": "https://www.first.org/tlp/"
}
},
"lang": "en",
"notes": [
{
"category": "summary",
"text": "An update for python-paramiko is now available for Red Hat Enterprise Linux 6.\n\nRed Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System (CVSS) base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link(s) in the References section.",
"title": "Topic"
},
{
"category": "general",
"text": "The python-paramiko package provides a Python module that implements the SSH2 protocol for encrypted and authenticated connections to remote machines. Unlike SSL, the SSH2 protocol does not require hierarchical certificates signed by a powerful central authority. The protocol also includes the ability to open arbitrary channels to remote services across an encrypted tunnel.\n\nSecurity Fix(es):\n\n* python-paramiko: Authentication bypass in transport.py (CVE-2018-7750)\n\nFor more details about the security issue(s), including the impact, a CVSS score, and other related information, refer to the CVE page(s) listed in the References section.",
"title": "Details"
},
{
"category": "legal_disclaimer",
"text": "This content is licensed under the Creative Commons Attribution 4.0 International License (https://creativecommons.org/licenses/by/4.0/). If you distribute this content, or a modified version of it, you must provide attribution to Red Hat Inc. and provide a link to the original.",
"title": "Terms of Use"
}
],
"publisher": {
"category": "vendor",
"contact_details": "https://access.redhat.com/security/team/contact/",
"issuing_authority": "Red Hat Product Security is responsible for vulnerability handling across all Red Hat products and services.",
"name": "Red Hat Product Security",
"namespace": "https://www.redhat.com"
},
"references": [
{
"category": "self",
"summary": "https://access.redhat.com/errata/RHSA-2018:1124",
"url": "https://access.redhat.com/errata/RHSA-2018:1124"
},
{
"category": "external",
"summary": "https://access.redhat.com/security/updates/classification/#critical",
"url": "https://access.redhat.com/security/updates/classification/#critical"
},
{
"category": "external",
"summary": "1557130",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1557130"
},
{
"category": "self",
"summary": "Canonical URL",
"url": "https://security.access.redhat.com/data/csaf/v2/advisories/2018/rhsa-2018_1124.json"
}
],
"title": "Red Hat Security Advisory: python-paramiko security update",
"tracking": {
"current_release_date": "2025-11-21T18:04:20+00:00",
"generator": {
"date": "2025-11-21T18:04:20+00:00",
"engine": {
"name": "Red Hat SDEngine",
"version": "4.6.12"
}
},
"id": "RHSA-2018:1124",
"initial_release_date": "2018-04-12T21:45:18+00:00",
"revision_history": [
{
"date": "2018-04-12T21:45:18+00:00",
"number": "1",
"summary": "Initial version"
},
{
"date": "2018-04-12T21:45:18+00:00",
"number": "2",
"summary": "Last updated version"
},
{
"date": "2025-11-21T18:04:20+00:00",
"number": "3",
"summary": "Last generated version"
}
],
"status": "final",
"version": "3"
}
},
"product_tree": {
"branches": [
{
"branches": [
{
"branches": [
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::client"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::computenode"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::server"
}
}
},
{
"category": "product_name",
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product": {
"name": "Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z",
"product_identification_helper": {
"cpe": "cpe:/o:redhat:enterprise_linux:6::workstation"
}
}
}
],
"category": "product_family",
"name": "Red Hat Enterprise Linux"
},
{
"branches": [
{
"category": "product_version",
"name": "python-paramiko-0:1.7.5-4.el6_9.src",
"product": {
"name": "python-paramiko-0:1.7.5-4.el6_9.src",
"product_id": "python-paramiko-0:1.7.5-4.el6_9.src",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-paramiko@1.7.5-4.el6_9?arch=src"
}
}
}
],
"category": "architecture",
"name": "src"
},
{
"branches": [
{
"category": "product_version",
"name": "python-paramiko-0:1.7.5-4.el6_9.noarch",
"product": {
"name": "python-paramiko-0:1.7.5-4.el6_9.noarch",
"product_id": "python-paramiko-0:1.7.5-4.el6_9.noarch",
"product_identification_helper": {
"purl": "pkg:rpm/redhat/python-paramiko@1.7.5-4.el6_9?arch=noarch"
}
}
}
],
"category": "architecture",
"name": "noarch"
}
],
"category": "vendor",
"name": "Red Hat"
}
],
"relationships": [
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-0:1.7.5-4.el6_9.noarch as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch"
},
"product_reference": "python-paramiko-0:1.7.5-4.el6_9.noarch",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-0:1.7.5-4.el6_9.src as a component of Red Hat Enterprise Linux Desktop (v. 6)",
"product_id": "6Client-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src"
},
"product_reference": "python-paramiko-0:1.7.5-4.el6_9.src",
"relates_to_product_reference": "6Client-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-0:1.7.5-4.el6_9.noarch as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch"
},
"product_reference": "python-paramiko-0:1.7.5-4.el6_9.noarch",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-0:1.7.5-4.el6_9.src as a component of Red Hat Enterprise Linux HPC Node (v. 6)",
"product_id": "6ComputeNode-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src"
},
"product_reference": "python-paramiko-0:1.7.5-4.el6_9.src",
"relates_to_product_reference": "6ComputeNode-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-0:1.7.5-4.el6_9.noarch as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch"
},
"product_reference": "python-paramiko-0:1.7.5-4.el6_9.noarch",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-0:1.7.5-4.el6_9.src as a component of Red Hat Enterprise Linux Server (v. 6)",
"product_id": "6Server-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src"
},
"product_reference": "python-paramiko-0:1.7.5-4.el6_9.src",
"relates_to_product_reference": "6Server-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-0:1.7.5-4.el6_9.noarch as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch"
},
"product_reference": "python-paramiko-0:1.7.5-4.el6_9.noarch",
"relates_to_product_reference": "6Workstation-6.9.z"
},
{
"category": "default_component_of",
"full_product_name": {
"name": "python-paramiko-0:1.7.5-4.el6_9.src as a component of Red Hat Enterprise Linux Workstation (v. 6)",
"product_id": "6Workstation-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src"
},
"product_reference": "python-paramiko-0:1.7.5-4.el6_9.src",
"relates_to_product_reference": "6Workstation-6.9.z"
}
]
},
"vulnerabilities": [
{
"cve": "CVE-2018-7750",
"cwe": {
"id": "CWE-287",
"name": "Improper Authentication"
},
"discovery_date": "2018-03-16T00:00:00+00:00",
"ids": [
{
"system_name": "Red Hat Bugzilla ID",
"text": "1557130"
}
],
"notes": [
{
"category": "description",
"text": "It was found that when acting as an SSH server, paramiko did not properly check whether authentication is completed before processing other requests. A customized SSH client could use this to bypass authentication when accessing any resources controlled by paramiko.",
"title": "Vulnerability description"
},
{
"category": "summary",
"text": "python-paramiko: Authentication bypass in transport.py",
"title": "Vulnerability summary"
},
{
"category": "other",
"text": "This flaw is a user authentication bypass in the SSH Server functionality of paramiko (normally used by subclassing `paramiko.ServerInterface`). Where paramiko is used only for its client-side functionality (e.g. `paramiko.SSHClient`), the vulnerability is not exposed and thus cannot be exploited.\n\nThe following Red Hat products use paramiko only in client-side mode. Server side functionality is not used.\n\n* Red Hat Ceph Storage 2\n* Red Hat CloudForms 4\n* Red Hat Enterprise Linux 7\n* Red Hat Enterprise Virtualization\n* Red Hat Gluster Storage 3\n* Red Hat Openshift Container Platform\n* Red Hat Quick Cloud Installer\n* Red Hat Satellite 6\n* Red Hat Storage Console 2\n* Red Hat OpenStack Platform\n* Red Hat Update Infrastructure",
"title": "Statement"
},
{
"category": "general",
"text": "The CVSS score(s) listed for this vulnerability do not reflect the associated product\u0027s status, and are included for informational purposes to better understand the severity of this vulnerability.",
"title": "CVSS score applicability"
}
],
"product_status": {
"fixed": [
"6Client-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch",
"6Client-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src",
"6ComputeNode-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch",
"6ComputeNode-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src",
"6Server-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch",
"6Server-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src",
"6Workstation-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch",
"6Workstation-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src"
]
},
"references": [
{
"category": "self",
"summary": "Canonical URL",
"url": "https://access.redhat.com/security/cve/CVE-2018-7750"
},
{
"category": "external",
"summary": "RHBZ#1557130",
"url": "https://bugzilla.redhat.com/show_bug.cgi?id=1557130"
},
{
"category": "external",
"summary": "https://www.cve.org/CVERecord?id=CVE-2018-7750",
"url": "https://www.cve.org/CVERecord?id=CVE-2018-7750"
},
{
"category": "external",
"summary": "https://nvd.nist.gov/vuln/detail/CVE-2018-7750",
"url": "https://nvd.nist.gov/vuln/detail/CVE-2018-7750"
}
],
"release_date": "2018-03-13T00:00:00+00:00",
"remediations": [
{
"category": "vendor_fix",
"date": "2018-04-12T21:45:18+00:00",
"details": "For details on how to apply this update, which includes the changes described in this advisory, refer to:\n\nhttps://access.redhat.com/articles/11258",
"product_ids": [
"6Client-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch",
"6Client-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src",
"6ComputeNode-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch",
"6ComputeNode-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src",
"6Server-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch",
"6Server-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src",
"6Workstation-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch",
"6Workstation-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src"
],
"restart_required": {
"category": "none"
},
"url": "https://access.redhat.com/errata/RHSA-2018:1124"
}
],
"scores": [
{
"cvss_v3": {
"attackComplexity": "LOW",
"attackVector": "NETWORK",
"availabilityImpact": "HIGH",
"baseScore": 9.8,
"baseSeverity": "CRITICAL",
"confidentialityImpact": "HIGH",
"integrityImpact": "HIGH",
"privilegesRequired": "NONE",
"scope": "UNCHANGED",
"userInteraction": "NONE",
"vectorString": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"version": "3.0"
},
"products": [
"6Client-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch",
"6Client-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src",
"6ComputeNode-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch",
"6ComputeNode-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src",
"6Server-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch",
"6Server-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src",
"6Workstation-6.9.z:python-paramiko-0:1.7.5-4.el6_9.noarch",
"6Workstation-6.9.z:python-paramiko-0:1.7.5-4.el6_9.src"
]
}
],
"threats": [
{
"category": "impact",
"details": "Critical"
}
],
"title": "python-paramiko: Authentication bypass in transport.py"
}
]
}
Loading…
Trend slope:
-
(linear fit over daily sighting counts)
Show additional events:
Loading…
Experimental. This forecast is provided for visualization only and may change without notice. Do not use it for operational decisions.
Forecast uses a logistic model when the trend is rising, or an exponential decay model when the trend is falling. Fitted via linearized least squares.
Sightings
| Author | Source | Type | Date | Other |
|---|
Nomenclature
- Seen: The vulnerability was mentioned, discussed, or observed by the user.
- Confirmed: The vulnerability has been validated from an analyst's perspective.
- Published Proof of Concept: A public proof of concept is available for this vulnerability.
- Exploited: The vulnerability was observed as exploited by the user who reported the sighting.
- Patched: The vulnerability was observed as successfully patched by the user who reported the sighting.
- Not exploited: The vulnerability was not observed as exploited by the user who reported the sighting.
- Not confirmed: The user expressed doubt about the validity of the vulnerability.
- Not patched: The vulnerability was not observed as successfully patched by the user who reported the sighting.
Loading…
Loading…