All vulnerabilities

CVE-2018-1000805

Paramiko Authentication Bypass vulnerability

Description

Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 contains a Incorrect Access Control vulnerability in SSH server that can result in RCE. This attack appear to be exploitable via network connectivity.

Patch Available

Fix available through Seal Security. 

No upgrade required, protect your application instantly.

Fix without upgrading
Score
8.8
Severity
High
Ecosystem
Python
Publish Date
October 8, 2018
Modified Date
November 7, 2023
Score Vector
CVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H
Affected Versions