CVE-2018-15599
Severity Score
5.3
*CVSS v3
Exploit Likelihood
*EPSS
Affected Versions
*CPE
Public Exploits
0
*Multiple Sources
Exploited in Wild
-
*KEV
Decision
-
*SSVC
Descriptions
The recv_msg_userauth_request function in svr-auth.c in Dropbear through 2018.76 is prone to a user enumeration vulnerability because username validity affects how fields in SSH_MSG_USERAUTH messages are handled, a similar issue to CVE-2018-15473 in an unrelated codebase.
La función recv_msg_userauth_request en svr-auth.c en Dropbear hasta la versión 2018.76 es propensa a una vulnerabilidad de enumeración de usuarios porque la validez de los nombres de usuarios afecta a cómo se manejan los campos en los mensajes SSH_MSG_USERAUTH. Este problema es similar a CVE-2018-15473 en una base de código no relacionada.
*Credits:
N/A
CVSS Scores
Attack Vector
Attack Complexity
Privileges Required
User Interaction
Scope
Confidentiality
Integrity
Availability
Attack Vector
Attack Complexity
Authentication
Confidentiality
Integrity
Availability
* Common Vulnerability Scoring System
SSVC
- Decision:-
Exploitation
Automatable
Tech. Impact
* Organization's Worst-case Scenario
Timeline
- 2018-08-20 CVE Reserved
- 2018-08-21 CVE Published
- 2024-03-16 EPSS Updated
- 2024-08-05 CVE Updated
- ---------- Exploited in Wild
- ---------- KEV Due Date
- ---------- First Exploit
CWE
- CWE-200: Exposure of Sensitive Information to an Unauthorized Actor
CAPEC
References (5)
| URL | Tag | Source |
|---|---|---|
| http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2018q3/002108.html | Mailing List | |
| http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2018q3/002109.html | Mailing List | |
| https://lists.debian.org/debian-lts-announce/2018/08/msg00026.html | Mailing List |
|
| https://matt.ucc.asn.au/dropbear/CHANGES | X_refsource_confirm | |
| https://old.reddit.com/r/blackhat/comments/97ywnm/openssh_username_enumeration/e4e05n2 | Third Party Advisory |
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
| URL | Date | SRC |
|---|
Affected Vendors, Products, and Versions
| Vendor | Product | Version | Other | Status | ||||||
|---|---|---|---|---|---|---|---|---|---|---|
| Vendor | Product | Version | Other | Status | <-- --> | Vendor | Product | Version | Other | Status |
| Debian Search vendor "Debian" | Debian Linux Search vendor "Debian" for product "Debian Linux" | 8.0 Search vendor "Debian" for product "Debian Linux" and version "8.0" | - |
Affected
| ||||||
| Dropbear Ssh Project Search vendor "Dropbear Ssh Project" | Dropbear Ssh Search vendor "Dropbear Ssh Project" for product "Dropbear Ssh" | <= 2018.76 Search vendor "Dropbear Ssh Project" for product "Dropbear Ssh" and version " <= 2018.76" | - |
Affected
| ||||||