OpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of any ECDSA algorithm in PubkeyAcceptedAlgorithms or HostbasedAcceptedAlgorithms is misinterpreted to mean all ECDSA algorithms.
1:7.5p1-101:7.5p1-81:7.5p1-91:7.5p1-9build11:7.5p1-11build11:8.9p1-3ubuntu0.151:7.5p1-121:7.5p1-12build11:7.5p1-131:9.6p1-3ubuntu13.161:7.5p1-141:7.5p1-151:7.5p1-15build11:7.5p1-161:10.0p1-5ubuntu5.41:7.5p1-171:10.2p1-2ubuntu3.21:7.5p1-171:7.5p1-18Exploitability
AV:NAC:HPR:LUI:NScope
S:UImpact
C:NI:LA:NCVSS:3.1/AV:N/AC:H/PR:L/UI:N/S:U/C:N/I:L/A:N