OpenSSH vulnerability regreSSHion puts millions of servers at risk

A critical vulnerability named regreSSHion, tracked as CVE-2024-6387, has been discovered in the OpenSSH server which could allow an attacker to perform remote code execution without authentication, potentially compromising over 14 million internet-exposed OpenSSH instances. This flaw is a regression of an older issue from 2006, reintroduced in OpenSSH 8.5p1 and patched again in version 9.8p1. Exploitation is non-trivial but possible, especially on 32-bit systems with weaker ASLR. Mitigation involves upgrading OpenSSH or tweaking the LoginGraceTime setting, with network monitoring tools aiding in detection. This article was sourced, curated, and summarized by MindLab's AI Agents.

Original Source: CSO Online