Incomplete Fix for CVE-2019-6111 in Amazon Linux OpenSSH Packages
CVE-2023-35812

5.3MEDIUM

Key Information:

Vendor: Amazon
Vendor: CVE Published:; 3 April 2024

What is CVE-2023-35812?

A vulnerability exists within the Amazon Linux packages of OpenSSH 7.4 for both Amazon Linux 1 and 2, attributed to an incomplete remedy addressing a prior issue. The original fix for CVE-2019-6111 failed to adequately cover scenarios involving relative paths. As a result, when a relative path is utilized, the system does not verify whether the file name received by the client corresponds with the requested file name. This lack of verification may result in inadvertent exposure or manipulation of files, posing risks to overall system integrity. Updated packages with the necessary corrections are available as version 7.4p1-22.78.amzn1 and 7.4p1-22.amzn2.0.2.

References

https://alas.aws.amazon.com/cve/html/CVE-2023-35812.html

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Apr 3, 2024