Latest ZAC Version 9.2 – Now Available for All Zultys Deployments  Download Update Now

Connect With an Expert: 888-985-8971

Connect With an Expert: 888-985-8971

Request Demo

SAN24-001

Zultys Security Advisory Notice - SAN24-001 Rev 1.0

‘Terrapin Attack’ vulnerability in OpenSSH related to the SSH transport protocol (CVE-2023-48795)

Severity: Low
Published: 2024-01-08
Updated: 2024-01-08
Revision: 1.0

Impacted Products

None

Affected Releases

Not applicable

Impacted 3rd Party Products

Not applicable

Introduction

On December 18, 2023 details of a vulnerability impacting OpenSSH was published in the National Vulnerability Database under CVE-2023-48795. The vulnerability relates to the SSH transport protocol and specific OpenSSH extensions. The vulnerability is commonly referred to as the ‘SSH Terrapin attack’.

Description

The MX-SE, MX-SE II, MX-E and MX-Virtual products are not impacted as SSH access is blocked.

The ZIP 4x and Z 2x series of IP phones are not impacted as SSH access is blocked.

Contact
If additional information is required contact support@zultys.com or your Authorized Zultys Channel Partner.

Download PDF
Back to Security Advisories >