CVE-2020-14145
CVE-2020-14145
In short
OpenSSH clients leak information about which encryption algorithms they support during the initial connection handshake, allowing attackers on the network to observe this discrepancy and potentially target the connection.
Technical detail
CWE-203 observable discrepancy in OpenSSH 5.7–8.4 client-side algorithm negotiation enables MITM attackers to infer supported algorithms via timing or response analysis during initial connections lacking cached host keys; requires network-level access but no authentication.
Summary generated and translated by AI from the official description.
The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N
Affected products
n/a · n/aWant to know if your infrastructure is exposed to this?
Talk to TrueHacking →References
https://anongit.mindrot.org/openssh.git/commit/?id=b3855ff053f5078ec3d3c653cdaedefaa5fc362dhttps://docs.ssh-mitm.at/CVE-2020-14145.htmlhttps://github.com/openssh/openssh-portable/compare/V_8_3_P1...V_8_4_P1https://github.com/ssh-mitm/ssh-mitm/blob/master/ssh_proxy_server/plugins/session/cve202014145.pyhttps://security.gentoo.org/glsa/202105-35https://security.netapp.com/advisory/ntap-20200709-0004/https://www.fzi.de/en/news/news/detail-en/artikel/fsa-2020-2-ausnutzung-eines-informationslecks-fuer-gezielte-mitm-angriffe-auf-ssh-clients/http://www.openwall.com/lists/oss-security/2020/12/02/1