Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in

Vulnerability of the refresh_progress_meter() function (progressmeter.c) in the OpenSSH cryptographic protection mechanism, which allows an attacker to disclose protected information or execute arbitrary code.

🗓️ 29 Oct 2019 00:00:00Reported by FSTEC of Russia — Information Security Threat DatabaseType 
bdu_fstec
 bdu_fstec🔗 bdu.fstec.ru👁 1 Views

OpenSSH refresh_progress_meter has access flaws enabling disclosure or code execution.

Related
Detection
Refs
ReporterTitlePublishedViews
Family
ALT Linux		Security fix for the ALT Linux 10 package openssh version 7.9p1-alt4.p10.1
23 Mar 202200:00
altlinux
Tenable Nessus		OpenSSH < 8.0 Multiple Vulnerbilities
21 Aug 201900:00
nessus
Tenable Nessus		Amazon Linux 2 : openssh (ALAS-2019-1216)
31 May 201900:00
nessus
Tenable Nessus		Amazon Linux AMI : openssh (ALAS-2019-1313)
31 Oct 201900:00
nessus
Tenable Nessus		Alibaba Cloud Linux 3 : 0188: openssh (ALINUX3-SA-2022:0188)
14 May 202500:00
nessus
Tenable Nessus		CentOS 8 : openssh (CESA-2019:3702)
29 Jan 202100:00
nessus
Tenable Nessus		Debian DLA-1728-1 : openssh security update
26 Mar 201900:00
nessus
Tenable Nessus		Debian DSA-4387-1 : openssh - security update
11 Feb 201900:00
nessus
Tenable Nessus		EulerOS 2.0 SP5 : openssh (EulerOS-SA-2019-1324)
6 May 201900:00
nessus
Tenable Nessus		EulerOS Virtualization 2.5.3 : openssh (EulerOS-SA-2019-1355)
10 May 201900:00
nessus
Rows per page
Vulners
Node
openbsdopensshRange7.9
OR
novellsuse_enterprise_storageMatch4
OR
novellsuse_openstack_cloudMatch7
OR
novellsuse_linux_enterprise_module_for_open_buildservice_development_toolsMatch15
OR
novellsuse_linux_enterprise_module_for_basesystemMatch15
OR
novellsuse_caas_platformMatch3.0
OR
novellsuse_linux_enterprise_module_for_desktop_applicationsMatch15
OR
novellsuse_linux_enterprise_module_for_server_applicationsMatch15
OR
novellopenstack_cloud_magnum_orchestrationMatch7
OR
red_hatred_hat_enterprise_linuxMatch7
OR
novellopensuse_leapMatch42.3
OR
canonicalubuntuMatch18.10
OR
red_hatred_hat_enterprise_linuxMatch8
OR
novellopensuse_leapMatch15.0
OR
novellsuse_linux_enterprise_serverMatch12-ltss
OR
novellsuse_linux_enterprise_server_for_sap_applicationsMatch12-ltss
OR
palo_alto_networkspan-osRange7.1.07.1.26
OR
palo_alto_networkspan-osRange8.1.08.1.13
OR
palo_alto_networkspan-osRange9.09.0.7

Data

Build on a solid foundation with Vulners data

We provide the essential building blocks for cybersecurity solutions with comprehensive, structured, and constantly updated vulnerability and exploits data

Api

Power your application with Vulners API

The Vulners REST API offers reliable, high-performance access to vulnerability intelligence, with 99.9% SLA uptime and CDN-backed data delivery for seamless global access

App

Assess and manage vulnerabilities with Vulners tools

Built on top of Vulners' database and SDK, end-user solutions give security professionals and developers lightweight and powerful tools for vulnerability remediation

Book a live demo
14 Apr 2022 00:00Current
5.5Medium risk
Vulners AI Score5.5
CVSS 24
CVSS 36.8
EPSS0.03807
OpenSSHrefresh_progress_meteraccess controldata disclosurecode execution
1