CVE-2018-15473

CVE Database · CVE-2018-15473

CVE-2018-15473

· MEDIUMModified

CVSS v3.1

5.3

EPSS

98.63%

Published

Aug 17, 2018

Modified

Dec 17, 2025

Public PoC / Exploit (4)

All weaponized →

Exploit-DBOpenSSH 2.3 < 7.7 - Username Enumeration Exploit-DBOpenSSH 2.3 < 7.7 - Username Enumeration (PoC)Exploit-DBOpenSSH < 7.7 - User Enumeration (2)TrickestTrickest PoC index

Links to public security research (Exploit-DB, Nuclei, Trickest, GitHub) for defensive use only.

Description

OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.

CVSS Vector

CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N

Weaknesses (CWE)

CWE-362CWE-362

Affected Products (32)

openbsd · opensshvulnerable

debian · debian_linuxvulnerable

redhat · enterprise_linux_desktopvulnerable

redhat · enterprise_linux_servervulnerable

redhat · enterprise_linux_workstationvulnerable

canonical · ubuntu_linuxvulnerable