CVE-2023-51767

Summary

CVE	CVE-2023-51767
State	PUBLISHED
Assigner	mitre
Source Priority	CVE Program / NVD first with legacy fallback
Published	2023-12-24 07:15:07 UTC
Updated	2026-06-02 16:16:28 UTC
Description	OpenSSH through 10.0, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges. NOTE: this is disputed by the Supplier, who states "we do not consider it to be the application's responsibility to defend against platform architectural weaknesses."

Risk And Classification

Primary CVSS: v3.1 7 HIGH from [email protected]

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

EPSS: 0.000070000 probability, percentile 0.004930000 (date 2026-06-02)

Problem Types: NVD-CWE-Other | n/a

Version	Source	Type	Score	Severity	Vector
3.1	[email protected]	Primary	7	HIGH	`CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H`
3.1	ADP	DECLARED	7	HIGH	`CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H`
3.1	134c704f-9b21-4f2e-91b3-4a467353bcc0	Secondary	7	HIGH	`CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H`

CVSS v3.1 Breakdown

Attack Vector

Local

Attack Complexity

High

Privileges Required

Low

User Interaction

None

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H

NVD Known Affected Configurations (CPE 2.3)

Type	Vendor	Product	Version	Update	Edition	Language
Operating System	Fedoraproject	Fedora	39	All	All	All
Application	Openbsd	Openssh	All	All	All	All
Operating System	Redhat	Enterprise Linux	8.0	All	All	All
Operating System	Redhat	Enterprise Linux	9.0	All	All	All

Vendor Declared Affected Products

Source	Vendor	Product	Version	Platforms
CNA	Na	N/a	affected n/a	Not specified

References

Reference	Source	Link	Tags
www.openwall.com/lists/oss-security/2025/09/23/5	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/26/4	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/23/4	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/29/6	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/29/5	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
access.redhat.com/security/cve/CVE-2023-51767	af854a3a-2127-422b-91ae-364da2661108	access.redhat.com	Third Party Advisory
bugzilla.redhat.com/show_bug.cgi	af854a3a-2127-422b-91ae-364da2661108	bugzilla.redhat.com	Issue Tracking, Third Party Advisory
www.openwall.com/lists/oss-security/2025/09/29/4	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
ubuntu.com/security/CVE-2023-51767	af854a3a-2127-422b-91ae-364da2661108	ubuntu.com	Third Party Advisory
www.openwall.com/lists/oss-security/2025/09/23/1	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/24/7	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/22/1	[email protected]	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/24/4	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/29/1	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/26/2	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/23/3	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
CVE-2023-51767 OpenSSH Vulnerability in NetApp Products \| NetApp Product Security	af854a3a-2127-422b-91ae-364da2661108	security.netapp.com	Third Party Advisory
www.openwall.com/lists/oss-security/2025/09/27/1	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb...	af854a3a-2127-422b-91ae-364da2661108	github.com	Product
www.openwall.com/lists/oss-security/2025/09/22/1	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/25/6	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
[2309.02545] Mayhem: Targeted Corruption of Register and Stack Variables	af854a3a-2127-422b-91ae-364da2661108	arxiv.org	Technical Description
www.openwall.com/lists/oss-security/2025/10/01/2	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/22/2	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/27/3	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/10/01/1	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/27/2	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb...	af854a3a-2127-422b-91ae-364da2661108	github.com	Product
www.openwall.com/lists/oss-security/2025/09/27/5	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/25/2	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/28/7	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/27/4	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/27/7	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
www.openwall.com/lists/oss-security/2025/09/27/6	af854a3a-2127-422b-91ae-364da2661108	www.openwall.com
CVE Program record	CVE.ORG	www.cve.org	canonical
NVD vulnerability detail	NVD	nvd.nist.gov	canonical, analysis

No vendor comments have been submitted for this CVE.

Legacy QID Mappings

38915 OpenSSH Multiple Vulnerabilities
38919 OpenSSH Authentication Bypass Vulnerability
908034 Common Base Linux Mariner (CBL-Mariner) Security Update for openssh (32269-1)