cbcvebase.
CVE-2014-2532
published 2014-03-18

CVE-2014-2532: sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment…

PriorityP431medium4.2CVSS 3.1
AVNACHPRLUINSUCLILAN
EPSS
4.75%
90.8th percentile
sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.

Affected

14 ranges
VendorProductVersion rangeFixed in
appleos_x_el_capitan_v10.11
debianopenssh< openssh 1:6.6p1-1 (bookworm)openssh 1:6.6p1-1 (bookworm)
openbsdopenssh<= 6.5
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh
openbsdopenssh>= 0 < 1:6.6p1-11:6.6p1-1
openbsdopenssh>= 0 < 1:6.6p1-11:6.6p1-1
openbsdopenssh>= 0 < 1:6.6p1-11:6.6p1-1
openbsdopenssh>= 0 < 1:6.6p1-11:6.6p1-1
oraclecommunications_user_data_repository
paloaltopan-os

CVSS provenance

nvdv3.14.2MEDIUMCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:N
nvdv3.04.9MEDIUMCVSS:3.0/AV:N/AC:H/PR:L/UI:N/S:C/C:L/I:L/A:N
nvdv2.05.8MEDIUMAV:N/AC:M/Au:N/C:P/I:P/A:N
osv4.9MEDIUM
vendor_debian4.9MEDIUM
vendor_redhat4.9MEDIUM
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.