漏洞描述
在 OpenSSH 的 9.6 版本之前,如果用户名或主机名包含 shell 元字符,并且在某些情况下通过扩展标记引用了这些名称,可能会发生操作系统命令注入。例如,一个不受信任的 Git 存储库可能包含一个子模块,其中的用户名或主机名包含 shell 元字符。
OpenSSH 远程命令执行漏洞
PoC代码
暂无相关漏洞推荐
- POC CVE-2025-32433: Erlang/OTP SSH - Remote Code Execution
- POC CVE-2018-16059: WirelessHART Fieldgate SWG70 3.0 - Local File Inclusion
- POC CVE-2023-48795: OpenSSH Terrapin Attack - Detection
- POC CVE-2001-1473: Deprecated SSHv1 Protocol Detection
- POC CVE-2001-1473: Deprecated SSHv1 Protocol Detection
- POC unrestricted-ssh-access: Unrestricted - SSH Access
- POC iam-ssh-keys-rotation: SSH Key Rotation - 90-Day Policy
- POC gcloud-vm-project-ssh-keys-enabled: Block Project-Wide SSH Keys Not Enabled
- POC ssh-gssapiauthentication-disabled: sshd GSSAPIAuthentication - Disabled
- POC ssh-hostbasedauth-disabled: Ensure SSH HostbasedAuthentication - Disabled
- POC privesc-ssh-agent: ssh-agent - Privilege Escalation
- POC privesc-sshpass: sshpass - Privilege Escalation
- POC file-disable-ssh-forwarding: Disable SSH Forwarding