WRITEUP #930

CVE-2023-38408: Remote Code Execution in OpenSSH’s forwarded ssh-agent

RCE

byQualys Threat Research Unit (TRU)

Program

OpenSSH

Published

Jul 20, 2023

Added to HackDex

Jul 24, 2023

Read Full Writeuphttps://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent

▸ RELATED WRITEUPS

Vulnerabilities in Open Source C2 Frameworks

RCEOS command injection

[2,500$ Bug Bounty Write-Up] Remote Code Execution (RCE) via unclaimed Node package

RCEDependency confusion

Attacking PowerShell CLIXML Deserialization

DeserializationInsecure deserialization

Zero-Click Calendar invite — Critical zero-click vulnerability chain in macOS

RCEArbitrary file write

We Spent $20 To Achieve RCE And Accidentally Became The Admins Of .MOBI

RCETLD hacking

Built with ❤️ by Shubham Rawat