CVE-2023-48795

MEDIUM EPSS 99.8%
Published Dec 18, 20232y ago · Modified Jun 17, 20262w ago
5.9 CVSS 3.1
Medium
Find Similar
Published Dec 18, 2023 2y ago
Last Modified Jun 17, 2026 2w ago

Description

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.

CVSS Details

Base Score
5.9
Exploitability
2.2
Impact
3.6
Vector string
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N
Attack Vector Network
Attack Complexity High
Privileges Required None
User Interaction None
Scope Unchanged
Confidentiality None
Integrity High
Availability None

Threat Intelligence

EPSS Exploit Probability
99.8% percentile
Exploit & Patch Status
Public Exploit Known
Patch Available

Weaknesses 1

CWE-354

Affected Products 86

VendorProductVersionRange
openbsdopenssh* <9.6
puttyputty* <0.80
filezilla-projectfilezilla_client* <3.66.4
applemacos*any
panictransmit_5* <5.10.4
applemacos*any
panicnova* <11.8
roumenpetrovpkixssh* <14.4
winscpwinscp* <6.2.2
bitvisessh_client* <9.33
bitvisessh_server* <9.32
lancom-systemslcos* ≤3.66.4
lancom-systemslcos_fx*any
lancom-systemslcos_lx*any
lancom-systemslcos_sx4.20any
lancom-systemslcos_sx5.20any
lancom-systemslanconfig*any
vandykesecurecrt* <9.4.3
libsshlibssh* <0.10.6
net-sshnet-ssh7.2.0any
ssh2_projectssh2* ≤1.11.0
proftpdproftpd* ≤1.3.8b
freebsdfreebsd* ≤12.4
cratesthrussh* <0.35.1
tera_term_projecttera_term* ≤5.1
oryx-embeddedcyclone_ssh* <2.3.4
crushftpcrushftp* ≤10.6.0
netsarangxshell_7* <build__0144
paramikoparamiko* <3.4.0
redhatopenshift_container_platform4.0any
redhatopenstack_platform16.1any
redhatopenstack_platform16.2any
redhatopenstack_platform17.1any
redhatceph_storage6.0any
redhatenterprise_linux8.0any
redhatenterprise_linux9.0any
redhatopenshift_serverless*any
redhatopenshift_gitops*any
redhatopenshift_pipelines*any
redhatopenshift_developer_tools_and_services*any
redhatopenshift_data_foundation4.0any
redhatopenshift_api_for_data_protection*any
redhatopenshift_virtualization4any
redhatstorage3.0any
redhatdiscovery*any
redhatopenshift_dev_spaces*any
redhatcert-manager_operator_for_red_hat_openshift*any
redhatkeycloak*any
redhatjboss_enterprise_application_platform7.0any
redhatsingle_sign-on7.0any
redhatadvanced_cluster_security3.0any
redhatadvanced_cluster_security4.0any
golangcrypto* <0.17.0
russh_projectrussh* <0.40.2
sftpgo_projectsftpgo* <2.5.6
erlangerlang\/otp* <22.3.4.27
erlangerlang\/otp*≥23.0  –  <23.3.4.20
erlangerlang\/otp*≥24.0  –  <24.3.4.15
erlangerlang\/otp*≥25.0  –  <25.3.2.8
erlangerlang\/otp*≥26.0  –  <26.2.1
matezjsch* <0.2.15
libssh2libssh2* <1.11.1
asyncssh_projectasyncssh* <2.14.2
dropbear_ssh_projectdropbear_ssh* <2022.83
jadaptivemaverick_synergy_java_ssh_api* <3.1.0-snapshot
sshssh* <4.9.1.5
sshssh*≥4.10  –  <4.11.1.7
sshssh*≥4.12  –  <4.13.2.4
sshssh*≥4.14  –  <4.15.3.1
sshssh*≥5.0  –  <5.1.1
thorntechsftp_gateway_firmware* <3.4.6
netgatepfsense_plus* ≤23.09.1
netgatepfsense_ce* ≤2.7.2
crushftpcrushftp* <10.6.0
connectbotsshlib* <2.2.22
apachesshd* ≤2.11.0
apachesshj* ≤0.37.0
tinysshtinyssh* ≤20230101
trileadssh26401any
9biskitty* ≤0.76.1.13
gentoosecurity*any
debiandebian_linux*any
fedoraprojectfedora38any
fedoraprojectfedora39any
debiandebian_linux10.0any
applemacos*≥14.0  –  <14.4

References 139

  • packetstormsecurity.com http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html
    Third Party AdvisoryVDB Entry
  • seclists.org http://seclists.org/fulldisclosure/2024/Mar/21
    Mailing ListThird Party Advisory
  • openwall.com http://www.openwall.com/lists/oss-security/2023/12/18/3
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2023/12/19/5
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2023/12/20/3
    Mailing ListMitigation
  • openwall.com http://www.openwall.com/lists/oss-security/2024/03/06/3
    Mailing List
  • openwall.com http://www.openwall.com/lists/oss-security/2024/04/17/8
    Mailing List
  • access.redhat.com https://access.redhat.com/security/cve/cve-2023-48795
    Third Party Advisory
  • arstechnica.com https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/
    Press/Media Coverage
  • bugs.gentoo.org https://bugs.gentoo.org/920280
    Issue Tracking
  • bugzilla.redhat.com https://bugzilla.redhat.com/show_bug.cgi?id=2254210
    Issue Tracking
  • bugzilla.suse.com https://bugzilla.suse.com/show_bug.cgi?id=1217950
    Issue Tracking
  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-082556.html
  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-364175.html
  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-769027.html
  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-794697.html
  • cert-portal.siemens.com https://cert-portal.siemens.com/productcert/html/ssa-915275.html
  • crates.io https://crates.io/crates/thrussh/versions
    Release Notes
  • filezilla-project.org https://filezilla-project.org/versions.php
    Release Notes
  • forum.netgate.com https://forum.netgate.com/topic/184941/terrapin-ssh-attack
    Issue Tracking
  • git.libssh.org https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6
    Patch
  • github.com https://github.com/NixOS/nixpkgs/pull/275249
    Release Notes
  • github.com https://github.com/PowerShell/Win32-OpenSSH/issues/2189
    Issue Tracking
  • github.com https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta
    Release Notes
  • github.com https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0
    Patch
  • github.com https://github.com/TeraTermProject/teraterm/releases/tag/v5.1
    Release Notes
  • github.com https://github.com/advisories/GHSA-45x7-px36-x8w8
    Third Party Advisory
  • github.com https://github.com/apache/mina-sshd/issues/445
    Issue Tracking
  • github.com https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab
    Patch
  • github.com https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22
    Third Party Advisory
  • github.com https://github.com/cyd01/KiTTY/issues/520
    Issue Tracking
  • github.com https://github.com/drakkan/sftpgo/releases/tag/v2.5.6
    Release Notes
  • github.com https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42
    Patch
  • github.com https://github.com/erlang/otp/releases/tag/OTP-26.2.1
    Release Notes
  • github.com https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d
    Patch
  • github.com https://github.com/hierynomus/sshj/issues/916
    Issue Tracking
  • github.com https://github.com/janmojzis/tinyssh/issues/81
    Issue Tracking
  • github.com https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5
    Patch
  • github.com https://github.com/libssh2/libssh2/pull/1291
    Mitigation
  • github.com https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25
    Patch
  • github.com https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3
    Patch
  • github.com https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15
    Product
  • github.com https://github.com/mwiede/jsch/issues/457
    Issue Tracking
  • github.com https://github.com/mwiede/jsch/pull/461
    Release Notes
  • github.com https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16
    Patch
  • github.com https://github.com/openssh/openssh-portable/commits/master
    Patch
  • github.com https://github.com/paramiko/paramiko/issues/2337
    Issue Tracking
  • github.com https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES
    Release Notes
  • github.com https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES
    Release Notes
  • github.com https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES
    Release Notes
  • github.com https://github.com/proftpd/proftpd/issues/456
    Issue Tracking
  • github.com https://github.com/rapier1/hpn-ssh/releases
    Release Notes
  • github.com https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst
    Release Notes
  • github.com https://github.com/ronf/asyncssh/tags
    Release Notes
  • github.com https://github.com/ssh-mitm/ssh-mitm/issues/165
    Issue Tracking
  • github.com https://github.com/warp-tech/russh/releases/tag/v0.40.2
    Release Notes
  • gitlab.com https://gitlab.com/libssh/libssh-mirror/-/tags
    Release Notes
  • groups.google.com https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ
    Mailing List
  • groups.google.com https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg
    Mailing List
  • help.panic.com https://help.panic.com/releasenotes/transmit5/
    Release Notes
  • jadaptive.com https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/
    Press/Media Coverage
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html
    Mailing List
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html
    Mailing ListThird Party Advisory
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html
    Mailing ListThird Party Advisory
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html
    Mailing ListThird Party Advisory
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2024/11/msg00032.html
  • lists.debian.org https://lists.debian.org/debian-lts-announce/2025/04/msg00028.html
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/
    Vendor Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/
    Mailing ListThird Party Advisory
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/
  • lists.fedoraproject.org https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/
  • matt.ucc.asn.au https://matt.ucc.asn.au/dropbear/CHANGES
    Release Notes
  • nest.pijul.com https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC
    Patch
  • news.ycombinator.com https://news.ycombinator.com/item?id=38684904
    Issue Tracking
  • news.ycombinator.com https://news.ycombinator.com/item?id=38685286
    Issue Tracking
  • news.ycombinator.com https://news.ycombinator.com/item?id=38732005
    Issue Tracking
  • nova.app https://nova.app/releases/#v11.8
    Release Notes
  • oryx-embedded.com https://oryx-embedded.com/download/#changelog
    Release Notes
  • psirt.global.sonicwall.com https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002
    Third Party Advisory
  • roumenpetrov.info https://roumenpetrov.info/secsh/#news20231220
    Release Notes
  • security-tracker.debian.org https://security-tracker.debian.org/tracker/CVE-2023-48795
    Vendor Advisory
  • security-tracker.debian.org https://security-tracker.debian.org/tracker/source-package/libssh2
    Vendor Advisory
  • security-tracker.debian.org https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg
    Vendor Advisory
  • security-tracker.debian.org https://security-tracker.debian.org/tracker/source-package/trilead-ssh2
    Issue Tracking
  • security.gentoo.org https://security.gentoo.org/glsa/202312-16
    Third Party Advisory
  • security.gentoo.org https://security.gentoo.org/glsa/202312-17
    Third Party Advisory
  • security.netapp.com https://security.netapp.com/advisory/ntap-20240105-0004/
    Third Party Advisory
  • support.apple.com https://support.apple.com/kb/HT214084
    Third Party Advisory
  • thorntech.com https://thorntech.com/cve-2023-48795-and-sftp-gateway/
    Third Party Advisory
  • twitter.com https://twitter.com/TrueSkrillor/status/1736774389725565005
    Press/Media Coverage
  • ubuntu.com https://ubuntu.com/security/CVE-2023-48795
    Vendor Advisory
  • winscp.net https://winscp.net/eng/docs/history#6.2.2
    Release Notes
  • bitvise.com https://www.bitvise.com/ssh-client-version-history#933
    Release Notes
  • bitvise.com https://www.bitvise.com/ssh-server-version-history
    Release Notes
  • chiark.greenend.org.uk https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html
    Release Notes
  • crushftp.com https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update
    Release Notes
  • debian.org https://www.debian.org/security/2023/dsa-5586
    Issue Tracking
  • debian.org https://www.debian.org/security/2023/dsa-5588
    Issue Tracking
  • freebsd.org https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc
    Release Notes
  • lancom-systems.de https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508
    Vendor Advisory
  • netsarang.com https://www.netsarang.com/en/xshell-update-history/
    Release Notes
  • openssh.com https://www.openssh.com/openbsd.html
    Release Notes
  • openssh.com https://www.openssh.com/txt/release-9.6
    Release Notes
  • openwall.com https://www.openwall.com/lists/oss-security/2023/12/18/2
    Mailing List
  • openwall.com https://www.openwall.com/lists/oss-security/2023/12/20/3
    Mailing ListMitigation
  • paramiko.org https://www.paramiko.org/changelog.html
    Release Notes
  • reddit.com https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/
    Issue Tracking
  • suse.com https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/
    Press/Media Coverage
  • terrapin-attack.com https://www.terrapin-attack.com
    Exploit
  • theregister.com https://www.theregister.com/2023/12/20/terrapin_attack_ssh
    Press/Media Coverage
  • vandyke.com https://www.vandyke.com/products/securecrt/history.txt
    Release Notes
  • vicarius.io https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit
    ExploitThird Party Advisory
  • vicarius.io https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability
    ExploitThird Party Advisory

Remediation

  • git.libssh.org https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6
    Patch
  • github.com https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0
    Patch
  • github.com https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab
    Patch
  • github.com https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42
    Patch
  • github.com https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d
    Patch
  • github.com https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5
    Patch
  • github.com https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25
    Patch
  • github.com https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3
    Patch
  • github.com https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16
    Patch
  • github.com https://github.com/openssh/openssh-portable/commits/master
    Patch
  • nest.pijul.com https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC
    Patch