Bridgei2i Analytics

Vulnerability scan Report of Elastic Beanstalk (aws) having OpenSSH version as 7.8 using Qualys shows “OpenSSH Username Enumeration Vulnerability”

Discussion created by Bridgei2i Analytics on Jun 12, 2019
Latest reply on Jun 14, 2019 by Bridgei2i Analytics

While doing vulnerability scan of an Elastic Beanstalk (aws) having OpenSSH version as 7.8 using Qualys , scan report shows “OpenSSH Username Enumeration Vulnerability” as shown in the screenshot below:

Solution suggested  is to upgrade OpenSSH to 7.8 or above(Highlighted in yellow) which we already have .Please do let us know the solution.

 

Elastic Beanstalk (aws):

Report generated after the scan:

Outcomes