Jump to content
Welcome to our new Citrix community!

NetScaler OpenSSH vulnerability


Nick Potts

Recommended Posts

Does anyone know if the NetScaler VPX 13 is vulnerable to the following OpenSSH vulnerabilities

 

OpenSSH: OpenSSH scp Command Injection Vulnerability

CVE-2020-15778

scp in OpenSSH allows command injection in scp.c remote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."

 

OpenSSH: Double-Free Memory Corruption Vulnerability

CVE-2021-28041

CVSS 4.6

ssh-agent in OpenSSH has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an agent to an attacker-controlled host.

 

OpenSSH: Information Leak Vulnerability

CVE-2020-14145

CVSS 4.3

The client side in OpenSSH has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client).

 

Thanks in advance

Link to comment
Share on other sites

Create an account or sign in to comment

You need to be a member in order to leave a comment

Create an account

Sign up for a new account in our community. It's easy!

Register a new account

Sign in

Already have an account? Sign in here.

Sign In Now
×
×
  • Create New...