Detailed Information: https://www.cve.org/CVERecord?id=CVE-2024-6387
Risk Assessment "Online Systems": HIGH
Risk Assessment "Offline Systems": LOW
Affected Systems: HOME (UBUNTU 22.04) HOME APPS (UBUNTU 22.04) NODE SYSTEM (YOCTO KIRKSTONE) AUDIO INFRASTRUCTURE (MCX)
Recommended Action
- Online Systems:
- Block SSH in Internet Firewall.
- Apply System Patch upon availability
- Offline Systems:
- Apply System Patch upon availability
Detailed Action
If your systems runs online, the recommended mitigation is blocking SSH in the internet firewall.
- SSH uses TCP port 22
- Block = deny/drop port 22
If you require SSH access to your environment, consider accepting SSH for these specific hosts, and dropping for all others.