Security Scan may Report SSH Prefix Truncation Vulnerability (Terrapin) CVE -2023-48795 on a Cisco 9000 Switch (Doc ID 3026827.1)

Last updated on JULY 24, 2024

Applies to:

Exadata Database Machine X10M - Version All Versions to All Versions [Release All Releases]
Exadata Database Machine X9M-2 Hardware - Version All Versions to All Versions [Release All Releases]
Exadata Database Machine X8-2/X8M-2 Hardware - Version All Versions to All Versions [Release All Releases]
Zero Data Loss Recovery Appliance X9M Hardware - Version All Versions to All Versions [Release All Releases]
Zero Data Loss Recovery Appliance X8/X8M Hardware - Version All Versions to All Versions [Release All Releases]
Information in this document applies to any platform.

Symptoms

Security Scan reports the following on a Cisco 9000 Switch

SSH Prefix Truncation Vulnerability (Terrapin) detected on port: 22
ChaCha20-Poly1305 Algorithm Support: True
CBC-EtM Algorithm Support: False
Strict Key Exchange algorithm enabled: False#

SSH verbose shows the following chacha20-poly1305@openssh.com Cipher

Cause

	To view full details, sign in with your My Oracle Support account.
	Don't have a My Oracle Support account? Click to get started!

In this Document

Symptoms

Cause

Solution

My Oracle Support provides customers with access to over a million knowledge articles and a vibrant support community of peers and Oracle experts.

Security Scan may Report SSH Prefix Truncation Vulnerability (Terrapin) CVE -2023-48795 on a Cisco 9000 Switch (Doc ID 3026827.1)

Applies to:

Symptoms

Cause

To view full details, sign in with your My Oracle Support account.

Don't have a My Oracle Support account? Click to get started!