ALAS-2018-1096 ---- python-paramiko, python26-paramiko, python27-paramikoID: oval:org.secpod.oval:def:1600941 | Date: (C)2018-10-25 (M)2022-10-28 |
Class: PATCH | Family: unix |
Paramiko contains a Incorrect Access Control vulnerability in SSH server that can result in RCE. This attack appear to be exploitable via network connectivity. This issue does not affect instances where only the ssh client functionality of the paramiko library is used.
Platform: |
Amazon Linux AMI |
Product: |
python-paramiko |
python26-paramiko |
python27-paramiko |