{"dataType": "CVE_RECORD", "dataVersion": "5.1", "cveMetadata": {"state": "PUBLISHED", "cveId": "CVE-2023-46445", "assignerOrgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "assignerShortName": "mitre", "dateUpdated": "2024-08-02T20:45:41.695Z", "dateReserved": "2023-10-23T00:00:00", "datePublished": "2023-11-14T00:00:00"}, "containers": {"cna": {"providerMetadata": {"orgId": "8254265b-2729-46b6-b9e3-3dfca2d5bfca", "shortName": "mitre", "dateUpdated": "2023-12-22T20:06:14.229897"}, "descriptions": [{"lang": "en", "value": "An issue in AsyncSSH before 2.14.1 allows attackers to control the extension info message (RFC 8308) via a man-in-the-middle attack, aka a \"Rogue Extension Negotiation.\""}], "affected": [{"vendor": "n/a", "product": "n/a", "versions": [{"version": "n/a", "status": "affected"}]}], "references": [{"url": "https://github.com/ronf/asyncssh/security/advisories/GHSA-cfc2-wr2v-gxm5"}, {"name": "FEDORA-2023-d2956318e4", "tags": ["vendor-advisory"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ME34ROZWMDK5KLMZKTSA422XVJZ7IMTE/"}, {"url": "https://www.terrapin-attack.com"}, {"url": "https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst"}, {"url": "https://github.com/advisories/GHSA-cfc2-wr2v-gxm5"}, {"url": "http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html"}, {"url": "https://security.netapp.com/advisory/ntap-20231222-0001/"}], "problemTypes": [{"descriptions": [{"type": "text", "lang": "en", "description": "n/a"}]}]}, "adp": [{"providerMetadata": {"orgId": "af854a3a-2127-422b-91ae-364da2661108", "shortName": "CVE", "dateUpdated": "2024-08-02T20:45:41.695Z"}, "title": "CVE Program Container", "references": [{"url": "https://github.com/ronf/asyncssh/security/advisories/GHSA-cfc2-wr2v-gxm5", "tags": ["x_transferred"]}, {"name": "FEDORA-2023-d2956318e4", "tags": ["vendor-advisory", "x_transferred"], "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ME34ROZWMDK5KLMZKTSA422XVJZ7IMTE/"}, {"url": "https://www.terrapin-attack.com", "tags": ["x_transferred"]}, {"url": "https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst", "tags": ["x_transferred"]}, {"url": "https://github.com/advisories/GHSA-cfc2-wr2v-gxm5", "tags": ["x_transferred"]}, {"url": "http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html", "tags": ["x_transferred"]}, {"url": "https://security.netapp.com/advisory/ntap-20231222-0001/", "tags": ["x_transferred"]}]}]}}

{}

{"configurations": [{"nodes": [{"cpeMatch": [{"criteria": "cpe:2.3:a:asyncssh_project:asyncssh:*:*:*:*:*:*:*:*", "matchCriteriaId": "5CCE165C-9A45-4A7B-95AF-2DF9137B4075", "versionEndExcluding": "2.14.1", "vulnerable": true}], "negate": false, "operator": "OR"}]}], "cveTags": [], "descriptions": [{"lang": "en", "value": "An issue in AsyncSSH before 2.14.1 allows attackers to control the extension info message (RFC 8308) via a man-in-the-middle attack, aka a \"Rogue Extension Negotiation.\""}, {"lang": "es", "value": "Un problema en AsyncSSH v2.14.0 y versiones anteriores permite a los atacantes controlar el mensaje de informaci\u00f3n de la extensi\u00f3n (RFC 8308) mediante un ataque de intermediario."}], "id": "CVE-2023-46445", "lastModified": "2023-12-22T20:15:07.270", "metrics": {"cvssMetricV31": [{"cvssData": {"attackComplexity": "HIGH", "attackVector": "NETWORK", "availabilityImpact": "NONE", "baseScore": 5.9, "baseSeverity": "MEDIUM", "confidentialityImpact": "NONE", "integrityImpact": "HIGH", "privilegesRequired": "NONE", "scope": "UNCHANGED", "userInteraction": "NONE", "vectorString": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "version": "3.1"}, "exploitabilityScore": 2.2, "impactScore": 3.6, "source": "nvd@nist.gov", "type": "Primary"}]}, "published": "2023-11-14T03:15:09.470", "references": [{"source": "cve@mitre.org", "url": "http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html"}, {"source": "cve@mitre.org", "url": "https://github.com/advisories/GHSA-cfc2-wr2v-gxm5"}, {"source": "cve@mitre.org", "url": "https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst"}, {"source": "cve@mitre.org", "tags": ["Third Party Advisory"], "url": "https://github.com/ronf/asyncssh/security/advisories/GHSA-cfc2-wr2v-gxm5"}, {"source": "cve@mitre.org", "url": "https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/ME34ROZWMDK5KLMZKTSA422XVJZ7IMTE/"}, {"source": "cve@mitre.org", "url": "https://security.netapp.com/advisory/ntap-20231222-0001/"}, {"source": "cve@mitre.org", "url": "https://www.terrapin-attack.com"}], "sourceIdentifier": "cve@mitre.org", "vulnStatus": "Modified", "weaknesses": [{"description": [{"lang": "en", "value": "CWE-345"}], "source": "nvd@nist.gov", "type": "Primary"}]}

{"bugzilla": {"description": "python-asyncssh: Rogue Extension Negotiation", "id": "2250326", "url": "https://bugzilla.redhat.com/show_bug.cgi?id=2250326"}, "csaw": false, "cvss3": {"cvss3_base_score": "5.9", "cvss3_scoring_vector": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N", "status": "draft"}, "cwe": "CWE-345->CWE-349->CWE-354", "details": ["An issue in AsyncSSH before 2.14.1 allows attackers to control the extension info message (RFC 8308) via a man-in-the-middle attack, aka a \"Rogue Extension Negotiation.\"", "A flaw was found in python-asyncssh before 2.14.1 versions, where the rogue extension negotiation process is unauthenticated and allows injecting an info message. This flaw allows an attacker to replace the original message, downgrading the algorithm used for client authentication, which affects the integrity of the message."], "name": "CVE-2023-46445", "package_state": [{"cpe": "cpe:/a:redhat:ceph_storage:6", "fix_state": "Affected", "package_name": "python-asyncssh", "product_name": "Red Hat Ceph Storage 6"}, {"cpe": "cpe:/a:redhat:ceph_storage:7", "fix_state": "Affected", "package_name": "python-asyncssh", "product_name": "Red Hat Ceph Storage 7"}, {"cpe": "cpe:/a:redhat:openshift_data_foundation:4", "fix_state": "Affected", "package_name": "odf4/cephcsi-rhel8", "product_name": "Red Hat Openshift Data Foundation 4"}], "public_date": "2023-11-13T00:00:00Z", "references": ["https://www.cve.org/CVERecord?id=CVE-2023-46445\nhttps://nvd.nist.gov/vuln/detail/CVE-2023-46445\nhttps://github.com/ronf/asyncssh/security/advisories/GHSA-cfc2-wr2v-gxm5"], "threat_severity": "Moderate", "upstream_fix": "python-asyncssh 2.14.1"}