CVE-1999-0013
CVSS 3.1 Score 8.4 of 10 (high)
Details
Summary
CVE-1999-0013 is a vulnerability affecting the ssh-agent program used in Secure Shell (SSH) clients. This issue arises from the failure to properly restrict access to the ssh-agent's private keys. An attacker who gains local access to a system where an ssh-agent is running can potentially steal credentials, thereby allowing them to access remote accounts belonging to the ssh-agent user. This vulnerability poses a significant risk to organizations and individuals relying on SSH for remote access security. It is essential to implement proper access control mechanisms, such as restricting ssh-agent access to authorized users and enforcing strong password policies, to mitigate this risk.
Prevent cyber attacks with Recorded Future by prioritizing and patching critical vulnerabilities being exploited by threat actors targeting your industry. Book your demo to learn more.
Affected Products
- SSH