Advisories

Weaknesses

Fixes

Requirements

Compliance

060 – Insecure service configuration - Host verification

Description

The system does not properly restrict incoming connections from unknown external hosts.

Impact

Establish connections with untrusted machines.

Recommendation

Validate that incoming connections come from trusted hosts already defined in the known_hosts file.

Threat

Authenticated attacker from the Internet.

Expected Remediation Time

15 minutes.

Score 4.0

Default score using CVSS 4.0. It may change depending on the context of the src.

Base 4.0

Attack vector: N
Attack complexity: L
Attack Requirements: N
Privileges required: L
User interaction: N
Confidentiality (VC): L
Integrity (VI): L
Availability (VA): N
Confidentiality (SC): N
Integrity (SI): N
Availability (SA): N

Threat 4.0

Exploit maturity: P

Requirements

266 - Disable insecure functionalities

Fixes

Last updated

2024/02/09