Home > Vulnerability Database > CVE-2023-51767

Mend.io Vulnerability Database

CVE-2023-51767

Date: December 24, 2023

OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.

Language: C

Severity Score

7.0

Related Resources (9)

Url: https://security.netapp.com/advisory/ntap-20240125-0006/

Url: https://nvd.nist.gov/vuln/detail/CVE-2023-51767

Url: https://bugzilla.redhat.com/show_bug.cgi?id=2255850

Url: https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/monitor.c#L878

Url: https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/auth-passwd.c#L77

Url: https://ubuntu.com/security/CVE-2023-51767

Url: https://arxiv.org/abs/2309.02545

Url: https://access.redhat.com/security/cve/CVE-2023-51767

Url: https://www.mend.io/vulnerability-database/CVE-2023-51767

Severity Score

7.0

CVSS v3.1

Base Score:	7.0
Attack Vector (AV):	LOCAL
Attack Complexity (AC):	HIGH
Privileges Required (PR):	LOW
User Interaction (UI):	NONE
Scope (S):	UNCHANGED
Confidentiality (C):	HIGH
Integrity (I):	HIGH
Availability (A):	HIGH

Mend.io Vulnerability Database

We found results for “”

CVE-2023-51767

Date: December 24, 2023

Language: C

Severity Score

Related Resources (9)

Severity Score

CVSS v3.1

Do you need more information?