A vulnerability exists in the SSH component of Erlang/OTP that affects versions prior to OTP-27.3.4, OTP-26.2.5.12, and OTP-25.3.2.21. The issue arises because the SSH implementation does not enforce strict key exchange (KEX) handshake hardening. It allows optional messages to be exchanged, which could be exploited by a Man-in-the-Middle attacker to inject these messages during the handshake process. Although this injection could disrupt the KEX process, there is no immediate security risk associated with it.
Exploitation of this vulnerability could lead to violations of the SSH protocol's strict KEX requirements, potentially allowing for future attacks or disruptions.
The vulnerability can be reproduced by initiating an SSH connection with an affected version of Erlang/OTP SSH. During the key exchange phase, optional messages can be injected, bypassing the strict KEX requirements outlined in the SSH protocol.
Users should update to Erlang/OTP versions 27.3.4, 26.2.5.12, or 25.3.2.21 to address this vulnerability.
Our algorithm analyzes dozens of metrics to generate these 8 key vulnerability categories, which are then combined to calculate the overall risk score.
