In ssh in OpenSSH before 9.6, OS... CVE-2023-51385

- AV AC AU C I A
发布: 2023-12-18
修订: 2024-03-13

In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.

0%

漏洞利用/PoC

暂无可用Exp或PoC

受影响的平台与产品

当前有4条受影响产品信息