OpenSSH Vulnerability in Authorized Keys Handling by OpenSSH
CVE-2026-35414
Key Information:
Badges
What is CVE-2026-35414?
CVE-2026-35414 is a vulnerability identified in OpenSSH, an essential software suite that provides secure communication over unsecured networks. OpenSSH is utilized widely for secure shell (SSH) access, file transfers, and other secure network services across various operating systems. The vulnerability arises from improper handling of the authorized_keys principals option when specific configurations are employed, particularly when a comma is included in a principals list alongside a Certificate Authority. This oversight can allow attackers to manipulate access controls, potentially leading to unauthorized access to systems and sensitive data. As a fundamental tool for many organizations' network security, this vulnerability poses a significant threat that can compromise the integrity and confidentiality of data.
Potential Impact of CVE-2026-35414
-
Unauthorized Access: The vulnerability can enable attackers to bypass intended access controls, resulting in unauthorized users gaining access to secure systems. This can lead to data theft or manipulation.
-
Compromise of Systems: With unauthorized access, attackers can perform a variety of malicious actions including deploying malware, stealing sensitive information, or using the compromised system to launch further attacks within the network.
-
Increased Attack Surface: This vulnerability adds to the overall risk profile of organizations utilizing OpenSSH, especially as it can be exploited under specific conditions that may not be immediately apparent to system administrators, complicating security management efforts.
Affected Version(s)
OpenSSH 0 < 10.3
Exploit Proof of Concept (PoC)
PoC code is written by security researchers to demonstrate the vulnerability can be exploited. PoC code is also a key component for weaponization which could lead to ransomware.