CVE-2018-7750

high-risk

Published 2018-03-13

transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step.

Do I need to act?

13.8% chance of exploitation in next 30 days

EPSS score — higher than 86% of all CVEs

Not on CISA KEV list

No confirmed active exploitation reported to CISA

1 public exploit available

45712

Fix available

Upgrade to: ac3f78648d2f48c3a99bbf0295245954a34ab46d, 3a50a3eb09168343af2d06ff7f269d2493af4e0b, 30452567c69096ad4aabd159ed3f3ad1ef83ab47, e62f35a71bcc90447f3eee6f5b48f174a7bfb83e, 04f0d9fc74f6219d2932252b6ba7d835bb4914ef, c07b6e6b8b94fe8a946a8120c1d1b4039c1fe4f0, fa29bd8446c8eab237f5187d28787727b4610516

CVSS 9.8/10 Critical

NETWORK / LOW complexity

Affected Products (18)

Paramiko

Ansible Engine

Cloudforms

Virtualization

Enterprise Linux Desktop

Enterprise Linux Server

Enterprise Linux Server Aus

Enterprise Linux Server Eus

Enterprise Linux Server Tus

Enterprise Linux Workstation

Debian Linux

Affected Vendors

Debian Redhat Paramiko

References (36)

Third Party Advisory http://www.securityfocus.com/bid/103713

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:0591

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:0646

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:1124

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:1125

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:1213

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:1274

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:1328

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:1525

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:1972

Third Party Advisory https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst

Patch https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b461...

Issue Tracking https://github.com/paramiko/paramiko/issues/1175

Mailing List https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html

Mailing List https://lists.debian.org/debian-lts-announce/2021/12/msg00025.html

Third Party Advisory https://usn.ubuntu.com/3603-1/

Third Party Advisory https://usn.ubuntu.com/3603-2/

Exploit https://www.exploit-db.com/exploits/45712/

Third Party Advisory http://www.securityfocus.com/bid/103713

Third Party Advisory https://access.redhat.com/errata/RHSA-2018:0591

and 16 more references

/ 100

high-risk

Severity 32/34 · Critical

Exploitability 12/34 · Low

Exposure 19/34 · Moderate