Issue: SpanVA Appliance Vulnerability found during Qualys Network Scan
CVE-2023-48795 - SSH Prefix Truncation Vulnerability (Terrapin).
SpanVA is on latest version 1,15.3.151.0-8rc dated 29 March 2023
Based on the available literature, we have concluded the Terrapin attack does not pose any practical risk to the SpanVA appliance.
However, we are in the process of upgrading OpenSSH shipped with SpanVA to address the issue (Release date TBD).
If the customer is anxious, here is a temporary workaround: