ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an agent to an attacker-controlled host.
AI analysis not yet available
Plain-English explanation, risk summary, and remediation steps will appear here once AI analysis is complete.
No Fix Known
No patch has been released yet. Apply workarounds or mitigations where available.
| Vendor | Product | Versions | Fixed In |
|---|---|---|---|
| openbsd | openssh | 8.2 - 8.5 | - |
| fedoraproject | fedora | - | - |
| fedoraproject | fedora | - |
Published
CVE disclosed publicly
Last Modified
Most recent update
Indexed to CVEInsight
Added to this platform
AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
10
Affected Products
18
References
openbsd / openssh
| - |
| netapp | cloud_backup | - | - |
| netapp | hci_management_node | - | - |
| netapp | solidfire | - | - |
| netapp | hci_compute_node_firmware | - | - |
| netapp | hci_storage_node_firmware | - | - |
| oracle | communications_offline_mediation_controller | - | - |
| oracle | zfs_storage_appliance | - | - |
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Exploitability
Impact