"Terrapin Vulnerability Threatens SSH Security Across 11 Million Servers"
Originally Published 2 years ago — by Ars Technica
A significant vulnerability in the Terrapin SSH protocol, identified as CVE-2023-48795, affects around 11 million Internet-exposed servers, allowing attackers to compromise SSH sessions. Despite the availability of patches, many servers remain unpatched, with the majority of vulnerable instances located in the US. The vulnerability requires an adversary-in-the-middle position, limiting its potential for mass exploitation but still posing a risk for targeted attacks. A wide range of SSH implementations are affected, and patches are available for most. Security experts recommend applying these patches promptly to mitigate the risk.