<?xml version="1.0" encoding="utf-8" standalone="yes"?><rss version="2.0" xmlns:atom="http://www.w3.org/2005/Atom" xmlns:content="http://purl.org/rss/1.0/modules/content/"><channel><title>Fido - CraftedSignal Threat Feed</title><link>https://feed.craftedsignal.io/tags/fido/</link><description>Trending threats, MITRE ATT&amp;CK coverage, and detection metadata. Fed continuously.</description><generator>Hugo</generator><language>en</language><managingEditor>hello@craftedsignal.io</managingEditor><webMaster>hello@craftedsignal.io</webMaster><lastBuildDate>Fri, 03 Jul 2026 10:42:03 +0000</lastBuildDate><atom:link href="https://feed.craftedsignal.io/tags/fido/feed.xml" rel="self" type="application/rss+xml"/><item><title>golang.org/x/crypto/ssh FIDO/U2F Physical Presence Bypass (CVE-2026-39831)</title><link>https://feed.craftedsignal.io/briefs/2026-07-golang-ssh-fido-u2f-bypass/</link><pubDate>Fri, 03 Jul 2026 10:42:03 +0000</pubDate><author>hello@craftedsignal.io</author><guid isPermaLink="true">https://feed.craftedsignal.io/briefs/2026-07-golang-ssh-fido-u2f-bypass/</guid><description>A critical vulnerability (CVE-2026-39831) in the `Verify()` method of the `golang.org/x/crypto/ssh` package (versions prior to 0.52.0) allowed the physical presence check for FIDO/U2F security key types to be bypassed, enabling unattended use of hardware security keys and potentially leading to unauthorized SSH access.</description><content:encoded><![CDATA[<p>A critical vulnerability, tracked as CVE-2026-39831, has been identified in the <code>golang.org/x/crypto/ssh</code> package, specifically in versions prior to 0.52.0. This flaw affects the <code>Verify()</code> method for FIDO/U2F security key types, including <code>sk-ecdsa-sha2-nistp256@openssh.com</code> and <code>sk-ssh-ed25519@openssh.com</code>. The vulnerability stems from the method's failure to properly check the &quot;User Presence&quot; flag. This oversight allows signatures generated by a hardware security key to be accepted without requiring the user's physical touch, effectively bypassing a critical security mechanism designed to prevent unauthorized or unattended use of the key. For organizations relying on FIDO/U2F for SSH authentication using this Go package, this could lead to unauthorized access if an attacker gains control over a system with an available, un-touched hardware security key. Defenders should prioritize updating to version 0.52.0 or later to mitigate this risk, or reconfigure to explicitly require user presence.</p>
<h2 id="attack-chain">Attack Chain</h2>
<ol>
<li>An attacker gains access to a client machine with a FIDO/U2F security key connected and available for use (e.g., via malware or physical access).</li>
<li>The attacker initiates an SSH connection to a vulnerable server, attempting to authenticate using the FIDO/U2F key.</li>
<li>The SSH server, running an application built with <code>golang.org/x/crypto/ssh</code> (version &lt; 0.52.0), sends an authentication challenge.</li>
<li>The attacker's controlled client generates an SSH signature using the FIDO/U2F key, but without the required user physical touch.</li>
<li>The vulnerable <code>Verify()</code> method within the server's <code>golang.org/x/crypto/ssh</code> library fails to validate the &quot;User Presence&quot; flag within the received signature.</li>
<li>The server accepts this unverified signature as legitimate, granting the attacker authenticated access to the system.</li>
</ol>
<h2 id="impact">Impact</h2>
<p>The immediate impact of this vulnerability is the potential for unauthorized SSH access if an attacker can leverage an already connected FIDO/U2F security key without the legitimate user's physical presence. This bypasses a fundamental security control of hardware security keys, which is designed to prevent remote or surreptitious authentication attempts. Organizations using <code>golang.org/x/crypto/ssh</code> for server-side SSH authentication are at risk of unauthorized access to their systems, potentially leading to data exfiltration, system compromise, or further network lateral movement. While no active exploitation is reported, the nature of the flaw could enable a determined attacker to gain privileged access to critical infrastructure.</p>
<h2 id="recommendation">Recommendation</h2>
<ul>
<li>Patch CVE-2026-39831 by updating the <code>golang.org/x/crypto/ssh</code> package to version 0.52.0 or later on all affected systems.</li>
<li>Review applications using <code>golang.org/x/crypto/ssh</code> to confirm correct implementation of <code>PublicKeyCallback</code> regarding the &quot;no-touch-required&quot; extension, as advised in GHSA-89gr-r52h-f8rx, to explicitly manage FIDO/U2F user presence requirements.</li>
</ul>
]]></content:encoded><category domain="severity">critical</category><category domain="type">threat</category><category>ssh</category><category>vulnerability</category><category>golang</category><category>fido</category><category>u2f</category></item></channel></rss>