Attacker Value
High
(3 users assessed)
Exploitability
Very Low
(3 users assessed)
User Interaction
None
Privileges Required
None
Attack Vector
Network
13

CVE-2024-6387

Disclosure Date: July 01, 2024
Add MITRE ATT&CK tactics and techniques that apply to this CVE.
Discovery
Techniques
Validation
Validated
Execution
Techniques
Validation
Validated
Initial Access
Techniques
Validation
Validated

Description

A security regression (CVE-2006-5051) was discovered in OpenSSH’s server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.

Add Assessment

CVSS V3 Severity and Metrics
Base Score:
8.1 High
Impact Score:
5.9
Exploitability Score:
2.2
Vector:
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
Attack Vector (AV):
Network
Attack Complexity (AC):
High
Privileges Required (PR):
None
User Interaction (UI):
None
Scope (S):
Unchanged
Confidentiality (C):
High
Integrity (I):
High
Availability (A):
High

General Information

Vendors

  • amazon,
  • canonical,
  • debian,
  • freebsd,
  • netapp,
  • netbsd,
  • openbsd,
  • redhat,
  • suse

Products

  • debian linux 12.0,
  • e-series santricity os controller,
  • enterprise linux 9.0,
  • enterprise linux eus 9.4,
  • enterprise linux for arm 64 9.0 aarch64,
  • enterprise linux for arm 64 eus 9.4 aarch64,
  • enterprise linux for ibm z systems 9.0 s390x,
  • enterprise linux for ibm z systems eus 9.4 s390x,
  • enterprise linux for power little endian 9.0 ppc64le,
  • enterprise linux for power little endian eus 9.4 ppc64le,
  • enterprise linux server aus 9.4,
  • freebsd 13.2,
  • freebsd 13.3,
  • freebsd 14.0,
  • freebsd 14.1,
  • linux 2023 -,
  • linux enterprise micro 6.0,
  • netbsd,
  • ontap select deploy administration utility -,
  • ontap tools 9,
  • openshift container platform 4.0,
  • openssh,
  • openssh 4.4,
  • openssh 8.5,
  • ubuntu linux 22.04,
  • ubuntu linux 22.10,
  • ubuntu linux 23.04

References

Exploit
PoCs that have not been added by contributors directly have been sourced from: nomi-sec/PoC-in-GitHub.
A PoC added here by the AKB Worker must have at least 2 GitHub stars.
Miscellaneous

Additional Info

Technical Analysis