CVE-2023-28113

Published: Mar 16, 2023Modified: Nov 21, 2024

5.9

Vector

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N

Exploitability: 2.2 / Impact: 3.6

Source: NVD

Description

russh is a Rust SSH client and server library. Starting in version 0.34.0 and prior to versions 0.36.2 and 0.37.1, Diffie-Hellman key validation is insufficient, which can lead to insecure shared secrets and therefore breaks confidentiality. Connections between a russh client and server or those of a russh peer with some other misbehaving peer are most likely to be problematic. These may vulnerable to eavesdropping. Most other implementations reject such keys, so this is mainly an interoperability issue in such a case. This issue is fixed in versions 0.36.2 and 0.37.1

Affected (3)

Products: Russh Project: Russh

1 product

Configuration A

3 vulnerable

Vulnerable Software	Affected Versions
Russh Project Russh	From 0.34.0 to 0.36.2
Russh Project Russh	Version 0.37.0
Russh Project Russh	Version 0.37.0 beta1

Related CWEs

Improper Input Validation

The product receives input or data, but it does not validate or incorrectly validates that the input has the properties that are required to process the data safely and correctly.

Improper Verification of Cryptographic Signature

The product does not verify, or incorrectly verifies, the cryptographic signature for data.

Improperly Implemented Security Check for Standard

The product does not implement or incorrectly implements one or more security-relevant checks as specified by the design of a standardized algorithm, protocol, or technique.

References (12)

https://github.com/warp-tech/russh/blob/master/russh/src/kex/dh/groups.rs#L72-L76

Source: security-advisories@github.com

Product

https://github.com/warp-tech/russh/blob/master/russh/src/kex/dh/groups.rs#L78-L81

Source: security-advisories@github.com

Product

https://github.com/warp-tech/russh/commit/d831a3716d3719dc76f091fcea9d94bd4ef97c6e

Source: security-advisories@github.com

Patch

https://github.com/warp-tech/russh/releases/tag/v0.36.2

Source: security-advisories@github.com

Release Notes

https://github.com/warp-tech/russh/releases/tag/v0.37.1

Source: security-advisories@github.com

Release Notes

https://github.com/warp-tech/russh/security/advisories/GHSA-cqvm-j2r2-hwpg

Source: security-advisories@github.com

ExploitVendor Advisory

https://github.com/warp-tech/russh/blob/master/russh/src/kex/dh/groups.rs#L72-L76

Source: af854a3a-2127-422b-91ae-364da2661108

Product

https://github.com/warp-tech/russh/blob/master/russh/src/kex/dh/groups.rs#L78-L81

Source: af854a3a-2127-422b-91ae-364da2661108

Product

https://github.com/warp-tech/russh/commit/d831a3716d3719dc76f091fcea9d94bd4ef97c6e

Source: af854a3a-2127-422b-91ae-364da2661108

Patch

https://github.com/warp-tech/russh/releases/tag/v0.36.2

Source: af854a3a-2127-422b-91ae-364da2661108

Release Notes

https://github.com/warp-tech/russh/releases/tag/v0.37.1

Source: af854a3a-2127-422b-91ae-364da2661108

Release Notes

https://github.com/warp-tech/russh/security/advisories/GHSA-cqvm-j2r2-hwpg

Source: af854a3a-2127-422b-91ae-364da2661108

ExploitVendor Advisory

Timeline

No history available yet.