sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.

nessus 23

openvas 14

ubuntucve 1

seebug 1

ubuntu 1

securityvulns 4

slackware 1

veracode 1

prion 1

debiancve 1

cve 1

mageia 1

aix 1

amazon 1

debian 3

centos 1

osv 1

oraclelinux 1

ibm 5

redhat 1

f5 2

fedora 2

gentoo 1

symantec 1

rosalinux 1

oracle 3

nessus

Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / current : openssh (SSA:2014-086-06)

2014-03-31 00:00:00

Ubuntu 10.04 LTS / 12.04 LTS / 12.10 / 13.10 : openssh vulnerability (USN-2155-1)

2014-03-26 00:00:00

Oracle Linux 6 : openssh (ELSA-2014-1552)

2014-10-17 00:00:00

openvas

Slackware: Security Advisory (SSA:2014-086-06)

2022-04-21 00:00:00

Ubuntu Update for openssh USN-2155-1

2014-04-03 00:00:00

OpenSSH 'child_set_env()' Function Security Bypass Vulnerability

2014-04-09 00:00:00

ubuntucve

CVE-2014-2532

2014-03-18 00:00:00

seebug

OpenSSH 'child_set_env()'函数安全绕过漏洞

2014-03-25 00:00:00

ubuntu

OpenSSH vulnerability

2014-03-25 00:00:00

securityvulns

[USN-2155-1] OpenSSH vulnerability

2014-03-27 00:00:00

OpenSSH protection bypass

2014-03-27 00:00:00

APPLE-SA-2015-09-30-3 OS X El Capitan 10.11

2015-10-05 00:00:00

slackware

[slackware-security] openssh

2014-03-28 22:55:11

veracode

Authorization Bypass

2019-01-15 09:02:26

prion

Design/Logic Flaw

2014-03-18 05:18:00

debiancve

CVE-2014-2532

2014-03-18 05:18:19

cve

CVE-2014-2532

2014-03-18 05:18:19

mageia

Updated openssh packages fix CVE-2014-2532

2014-03-31 23:38:10

aix

AIX OpenSSH Vulnerability

2014-06-17 04:07:12

amazon

Medium: openssh

2014-07-09 16:32:00

debian

[SECURITY] [DSA 2894-1] openssh security update

2014-04-05 15:06:26

[BSA-095] Security Update for openssh

2014-04-30 12:11:11

[SECURITY] [DSA 2894-1] openssh security update

2014-04-05 15:06:01

centos

openssh, pam_ssh_agent_auth security update

2014-10-20 18:10:27

osv

openssh - security update

2014-04-05 00:00:00

oraclelinux

openssh security, bug fix, and enhancement update

2014-10-15 00:00:00

ibm

Security Bulletin: Vulnerabilities in Open Secure Shell for GPFS V3.5 on Windows (CVE-2014-2653, CVE-2014-2532)

2021-06-25 16:46:35

Security Bulletin: Multiple vulnerabilities in Open SSL, OpenSSH and curl affect the Integrated Management Module II (IMM2)

2019-01-31 01:55:01

Security Bulletin: Security vulnerabilities in Open SSL, OpenSSH and curl affect the Integrated Management Module II (IMM2)

2019-01-31 01:35:01

redhat

(RHSA-2014:1552) Moderate: openssh security, bug fix, and enhancement update

2014-10-14 00:00:00

SOL15780 - OpenSSH vulnerabilities CVE-2014-2532 and CVE-2014-2653

2014-11-03 00:00:00

K15780 : OpenSSH vulnerabilities CVE-2014-2532 and CVE-2014-2653

2015-09-17 00:00:00

fedora

[SECURITY] Fedora 20 Update: openssh-6.4p1-4.fc20

2014-05-21 23:23:52

[SECURITY] Fedora 19 Update: openssh-6.2p2-8.fc19

2014-06-10 02:51:15

gentoo

OpenSSH: Multiple vulnerabilities

2014-05-11 00:00:00

symantec

SA104 : OpenSSH Vulnerabilities

2015-12-08 08:00:00

rosalinux

Advisory ROSA-SA-2021-1938

2021-07-02 17:38:20

oracle

Oracle Critical Patch Update Advisory - April 2016

2016-04-19 00:00:00

Oracle Critical Patch Update - October 2016

2016-10-18 00:00:00

CPU July 2018

2018-07-17 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

5 Medium

AI Score

Confidence

High

0.003 Low

EPSS

Percentile

69.3%

JSON

Related for CVELIST:CVE-2014-2532