Learning more about “SSH Regression vulnerability”

Gupta Bless
4 min readJul 28, 2024
Source

Introduction

By utilizing the SecureShell protocol, OpenSSH enables encrypted communication across a network of computers. For that reason, OpenSSH is a variant of the Secure Sockets Layer protocol. The OpenSSH security hole will be covered in today’s blog post. Be aware that unauthenticated RCE can result from this vulnerability. We should talk about this thoroughly.

What is CVE-2024–6387?

It has been linked to the OpenSSH vulnerability (CVE-2024–6387). Discovered by the Qualys Threat Researcher Unit, this significant vulnerability allows you root access to the compromised system without any user interaction. While the Qualys team published information of this bug on July 1, 2024, OpenSSH had a comparable issue in 2006 (CVE-2006–5051), which was patched. One issue with regression vulnerabilities was that they could return in later software releases, even after being repaired. This could be because of changes or updates that reintroduce the vulnerabilities.

Therefore, a fix was introduced for OpenSSH 8.5p1 in 2020, but the regression vulnerability reappeared in that patch. This could be because a critical component was accidentally removed between versions 8.5p1 and 9.8 p1.

What is the root Cause of this vulnerability?

--

--