Admins must act: PuTTY vulnerability threatens Citrix Hypervisor
(Bild: AFANASEV IVAN/Shutterstock.com)
To secure XenCenter for Citrix Hypervisor, admins must manually install a security update for the SSH tool PuTTY.
Under certain conditions, attackers can access admins' private SSH keys in the context of XenCenter for Citrix Hypervisor. To prevent such attacks, admins must react now.
As Citrix writes in a warning message [1], the vulnerability (CVE-2024-31497 [2]) can be found in the SSH tool PuTTY. However, Citrix is not providing a security update for XenCenter; instead, admins must update or uninstall PuTTY themselves.
The software company states that PuTTY has not been used since XenCenter 8.2.7. XenCenter for XenServer 8 has never used the SSH tool. PuTTY 0.81 is said to be secure. The SSH tool establishes SSH connections to guest VMs in the context of virtual machines. If an attacker controls a guest VM, they can access a private SSH admin key due to the vulnerability.
[3](des [4])
Don't miss any news – follow us on Facebook [5], LinkedIn [6] or Mastodon [7].
This article was originally published in German [8]. It was translated with technical assistance and editorially reviewed before publication.
URL dieses Artikels:
https://www.heise.de/-9713936
Links in diesem Artikel:
[1] https://support.citrix.com/article/CTX633416/citrix-hypervisor-security-update-for-cve202431497
[2] https://www.heise.de/news/Nur-NIST-P-521-betroffen-PuTTY-Luecke-kompromittiert-private-SSH-Schluessel-9687539.html?from-en=1
[3] https://pro.heise.de/security/?LPID=39555_HS1L0001_27416_999_0&wt_mc=disp.fd.security-pro.security_pro24.disp.disp.disp
[4] mailto:des@heise.de
[5] https://www.facebook.com/heiseonlineEnglish
[6] https://www.linkedin.com/company/104691972
[7] https://social.heise.de/@heiseonlineenglish
[8] https://www.heise.de/news/Admins-muessen-selbst-handeln-PuTTY-Sicherheitsluecke-bedroht-Citrix-Hypervisor-9713898.html
Copyright © 2024 Heise Medien