OpenSSH <9.6 ssh-agent PKCS#11 Dest. Cons. Flaw
CVE-2023-51384 Published on December 18, 2023

In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.

Vendor Advisory NVD

Products Associated with CVE-2023-51384

You can be notified by email with stack.watch whenever vulnerabilities like CVE-2023-51384 are published in these products:

OpenBSD OpenSSH

Canonical Ubuntu Linux

Debian Linux

Oracle

Exploit Probability

EPSS

0.04%

Percentile

13.37%

EPSS (Exploit Prediction Scoring System) scores estimate the probability that a vulnerability will be exploited in the wild within the next 30 days. The percentile shows you how this score compares to all other vulnerabilities.

OpenSSH <9.6 ssh-agent PKCS#11 Dest. Cons. FlawCVE-2023-51384 Published on December 18, 2023

Products Associated with CVE-2023-51384

Exploit Probability

OpenSSH <9.6 ssh-agent PKCS#11 Dest. Cons. Flaw
CVE-2023-51384 Published on December 18, 2023