AsyncSSH.UserAuth.Request.Message.Session.Redirect
Description
This indicates an attack attempt to exploit a Session Redirect Vulnerability in AsyncSSH.
The vulnerability is due to an error during a SSH handshake when handling a maliciously crafted packet. Successful exploitation could result in the client session to be redirected to the attacker.
Affected Products
AsyncSSH prior to version 2.14.1.
Impact
Privilege Escalation: Attackers can leverage their privileges on vulnerable systems.
Recommended Actions
Apply the most recent upgrade or patch from the vendor.
https://asyncssh.readthedocs.io/en/latest/changes.html
Telemetry
Coverage
IPS (Regular DB) | |
IPS (Extended DB) |