SSH Terrapin (CVE-2023-48795) 漏洞在 Cisco 9336C-FX2 交换机上
适用于
- Cisco Nexus 9336C-FX2
- 集群交换机 (N9K-C9336C-FX2)
- Cisco NX-OS 软件(特别是 10.3(4a) 版本)
- 使用 Cisco 支持的集群交换机的 NetApp 环境
- 漏洞:CVE-2023-48795 (SSH Terrapin 前缀截断弱点)
问题描述
- Cisco Nexus9336C-FX2 集群交换机上的安全扫描报告了以下内容
SSHTerrapinPrefixTruncationWeakness(CVE-2023-48795)
Synopsis: The remote SSH server is vulnerable to a mitm prefix truncation attack.
Description: The remote SSH server is vulnerable to a man-in-the-middle prefix truncation weakness known as Terrapin. This can allow a remote, man-in-the-middle attacker to bypass integrity checks and downgrade the connection's security.
- 受影响的交换机运行的是 Cisco NX-OS 版本 10.3(4a)。