Unauthorized Access Vulnerability in libssh Server-Side State Machine

Unauthorized Access Vulnerability in libssh Server-Side State Machine

CVE-2018-10933 · MEDIUM Severity

AV:N/AC:L/AU:N/C:P/I:P/A:N

A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and 0.8.4. A malicious client could create channels without first performing authentication, resulting in unauthorized access.

Learn more about our Cis Benchmark Audit For Server Software.