this post was submitted on 28 Apr 2026
29 points (100.0% liked)

Cybersecurity

9898 readers
79 users here now

c/cybersecurity is a community centered on the cybersecurity and information security profession. You can come here to discuss news, post something interesting, or just chat with others.

THE RULES

Instance Rules

Community Rules

If you ask someone to hack your "friends" socials you're just going to get banned so don't do that.

Learn about hacking

Hack the Box

Try Hack Me

Pico Capture the flag

Other security-related communities !databreaches@lemmy.zip !netsec@lemmy.world !securitynews@infosec.pub !cybersecurity@infosec.pub !pulse_of_truth@infosec.pub

Notable mention to !cybersecuritymemes@lemmy.world

founded 2 years ago
MODERATORS
kid@sh.itjust.works
Lanky_Pomegranate530@midwest.social
29
OpenSSH Flaw Allowing Full Root Shell Access Lurked for 15 Years - SecurityWeek (www.securityweek.com)
submitted 1 day ago by kid@sh.itjust.works to c/cybersecurity@sh.itjust.works
3 comments fedilink hide all child comments
you are viewing a single comment's thread
view the rest of the comments
[โ€“] icerunner_origin@startrek.website 17 points 1 day ago (1 children)

Tracked as CVE-2026-35414 (CVSS score of 8.1), the flaw is described as a mishandling of the authorized_keys principals option in certain scenarios involving certificate authorities (CA) that use comma characters.

According to Cyera, because of the bug, a comma in an SSH certificate principal name leads to OpenSSH access control bypass, allowing users to authenticate as root on a vulnerable server, as long as they have a valid certificate from a trusted CA.

[โ€“] ptz@dubvee.org 8 points 1 day ago

I was about to dive into that, so thanks for the breakdown. My fear was someone could just add a comma to any SSH cert and gain remote root.