Information regarding CVE-2023-38408 in NSX-T

search cancel

Information regarding CVE-2023-38408 in NSX-T

book

Article ID: 322519

calendar_today

Updated On: 12-04-2024

Products

VMware NSX

Issue/Introduction

CVE-2023-38408: Remote Code Execution in OpenSSH's forwarded ssh-agent
For further details please review the NVD and CVE listing.

Environment

VMware NSX-T Data Center

Resolution

VMware NSX 4.1.1 has an updated version of openssh which is not susceptible to this issue.
Under normal conditions, VMware NSX is not susceptible to this issue.
For the compromise to succeed, you first need to enable ssh-agent forwarding, which is not enabled by VMware NSX by default.

Feedback

thumb_up Yes

thumb_down No