Back to directory

WRITEUP #620

SSH ProxyCommand == unexpected code execution (CVE-2023-51385)

RCEOS command injection

byVin01

Program

OpenSSH

Published

Dec 20, 2023

Added to HackDex

Feb 6, 2024

Read Full Writeuphttps://vin01.github.io/piptagole/ssh/security/openssh/libssh/remote-code-execution/2023/12/20/openssh-proxycommand-libssh-rce.html

▸ RELATED WRITEUPS

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

SSD Advisory – SonicWall SMA100 Stored XSS To RCE

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

Built with ❤️ by Shubham Rawat