Severity: Unknown
Affected Package: openssh
Summary: OpenSSH Prefix Truncation Attack in the SSH protocol
A man in the middle attacker can silently manipulate handshake messages to truncate extension negotiation messages potentially leading to less secure client authentication algorithms or deactivating keystroke timing attack countermeasures.
Specific versions:
No specific recommendations provided.
Aliases: CVE-2023-48795
Published: December 27, 2023
Last Modified: December 27, 2023