This website uses cookies. By clicking Accept, you consent to the use of cookies. Click Here to learn more about how we use cookies.
Accept
Reject
Help
cancel
Turn on suggestions
Auto-suggest helps you quickly narrow down your search results by suggesting possible matches as you type.
Showing results for 
Search instead for 
Did you mean: 

SA-2023-091 - OpenSSH information leak (CVE-2020-14145)

SamPirok
Community Manager Community Manager
Community Manager
‎10-09-2023 05:50 AM

Summary

The client side of OpenSSH has an observable discrepancy, leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts.

Products not listed in the Products Potentially Affected section have not been evaluated. Furthermore, products that have exceeded any software maintenance time periods are also not evaluated and will not be published. Please consult End of Sale and End of Service Life - Extreme Networks for the EOL notices related to the product under question.

 

Products Potentially Affected

OS/Product Exposure
Switch Engine (EXOS) Yes

 

Repair Recommendations

None

 

Please see the full Security Advisory article here for more details and updated information. 

0 Kudos
1 Comment
ACollins
New Contributor
‎10-20-2023 07:10 AM
‎10-20-2023 07:10 AM

When will the other products be evaluated? VOSS and IQ Engine in particular?

0 Kudos
Popular Articles
GTM-P2G8KFN