CVE-2023-46446

Severity CVSS v4.0:
Pending analysis
Type:
Unavailable / Other
Publication date:
14/11/2023
Last modified:
22/12/2023

Description

An issue in AsyncSSH before 2.14.1 allows attackers to control the remote end of an SSH client session via packet injection/removal and shell emulation, aka a "Rogue Session Attack."

Vulnerable products and versions

CPE From Up to
cpe:2.3:a:asyncssh_project:asyncssh:*:*:*:*:*:*:*:* 2.14.1 (excluding)