Lucene search
MitreCVELIST:CVE-2021-36368HistoryMar 12, 2022 - 11:24 p.m.
CVE-2021-36368
2022-03-1223:24:35
mitre
raw.githubusercontent.com
3
An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user’s behalf. NOTE: the vendor’s position is "this is not an authentication bypass, since nothing is being bypassed.
Related
nessus
nessus
EulerOS Virtualization 2.10.0 : openssh (EulerOS-SA-2022-2097)
2022-07-15 00:00:00
EulerOS 2.0 SP10 : openssh (EulerOS-SA-2022-2167)
2022-07-29 00:00:00
EulerOS Virtualization 2.9.1 : openssh (EulerOS-SA-2022-2359)
2022-09-24 00:00:00
openvas
openvas
Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2022-2142)
2022-07-29 00:00:00
Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2022-2117)
2022-07-14 00:00:00
Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2022-2097)
2022-07-14 00:00:00
f5
f5
K04665443 : OpenSSH vulnerability CVE-2021-36368
2022-05-19 00:00:00
redhatcve
redhatcve
CVE-2021-36368
2022-05-16 13:45:45
cbl_mariner
cbl_mariner
CVE-2021-36368 affecting package openssh 8.8p1-2
2022-11-03 00:44:53
CVE-2021-36368 affecting package openssh for versions less than 8.9p1-1
2023-08-10 16:37:57
ubuntucve
ubuntucve
CVE-2021-36368
2022-03-13 00:00:00
alpinelinux
alpinelinux
CVE-2021-36368
2022-03-13 00:15:00
debiancve
debiancve
CVE-2021-36368
2022-03-13 00:15:00
cve
cve
CVE-2021-36368
2022-03-13 00:15:00
prion
prion
Authentication flaw
2022-03-13 00:15:00