OpenSSH 6.2 <= 8.7 Privilege Escalation Vulnerability

OpenSSH is prone to a privilege scalation vulnerability in certain configurations.

sshd failed to correctly initialise supplemental groups when executing an AuthorizedKeysCommand or AuthorizedPrincipalsCommand, where a AuthorizedKeysCommandUser or AuthorizedPrincipalsCommandUser directive has been set to run the command as a different user. Instead these commands would inherit the groups that sshd was started with. Depending on system configuration, inherited groups may allow AuthorizedKeysCommand/AuthorizedPrincipalsCommand helper programs to gain unintended privilege. Neither AuthorizedKeysCommand nor AuthorizedPrincipalsCommand are enabled by default in sshd_config.

OpenSSH versions 6.2 through 8.7.

Checks if a vulnerable version is present on the target host.

Update to version 8.8 or later.