Zultys Security Advisory Notice - SAN24-001 Rev 1.0

‘Terrapin Attack’ vulnerability in OpenSSH related to the SSH transport protocol (CVE-2023-48795)

Severity: Low

Published: 2024-01-08

Updated: 2024-01-08

Revision: 1.0

Impacted Products

None

Affected Releases

Not applicable
Impacted 3
rd
Party Products
Not applicable

Introduction

On December 18, 2023 details of a vulnerability impacting OpenSSH was published in the National Vulnerability Database under CVE-2023-48795. The vulnerability relates to the SSH transport protocol and specific OpenSSH extensions. The vulnerability is commonly referred to as the ‘SSH Terrapin attack’.

Description

The MX-SE, MX-SE II, MX-E and MX-Virtual products are not impacted as SSH access is blocked.

The ZIP 4x and Z 2x series of IP phones are not impacted as SSH access is blocked.

Contact
If additional information is required contact support@zultys.com or your Authorized Zultys Channel Partner.

Download PDF Back to Security Advisories >

Zultys Security Advisory Notice - SAN24-001 Rev 1.0

‘Terrapin Attack’ vulnerability in OpenSSH related to the SSH transport protocol (CVE-2023-48795)

Impacted Products

Affected Releases

Introduction

Description

Get started with smarter communications today.

Products

Platforms

Resources

Company