CVE-2023-46446
Published
CVSS v3
6.8
MEDIUM
CVSS v2
N/A
Affected
1
PROJECT
Description
An issue in AsyncSSH before 2.14.1 allows attackers to control the remote end of an SSH client session via packet injection/removal and shell emulation, aka a "Rogue Session Attack."
AsyncSSH is a Python package which provides an asynchronous client and server implementation of the SSHv2 protocol on top of the Python asyncio framework.
GitHub