Vulnerability CVE-2018-7750

Vulnerability CVE-2018-7750

Published: 2018-03-13

Description:

	Topic	Author	Date
Med.	Paramiko 2.4.1 Authentication Bypass	Adam Brown	29.10.2018

Type:

(Improper Authentication)

CVSS Base Score	Impact Subscore	Exploitability Subscore
7.5/10	6.4/10	10/10

Affected software
Redhat -> Ansible engine
Redhat -> Cloudforms
Redhat -> Enterprise linux desktop
Redhat -> Enterprise linux server
Redhat -> Enterprise linux server aus
Redhat -> Enterprise linux server eus
Redhat -> Enterprise linux server tus
Redhat -> Enterprise linux workstation
Redhat -> Virtualization
Paramiko -> Paramiko
Debian -> Debian linux

http://www.securityfocus.com/bid/103713

https://access.redhat.com/errata/RHSA-2018:0591

https://access.redhat.com/errata/RHSA-2018:0646

https://access.redhat.com/errata/RHSA-2018:1124

https://access.redhat.com/errata/RHSA-2018:1125

https://access.redhat.com/errata/RHSA-2018:1213

https://access.redhat.com/errata/RHSA-2018:1274

https://access.redhat.com/errata/RHSA-2018:1328

https://access.redhat.com/errata/RHSA-2018:1525

https://access.redhat.com/errata/RHSA-2018:1972

https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst

https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516

https://github.com/paramiko/paramiko/issues/1175

https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html

https://usn.ubuntu.com/3603-1/

https://usn.ubuntu.com/3603-2/

https://www.exploit-db.com/exploits/45712/