Lucene search
K

45 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/22 12:0 a.m.5 views

Azure Linux 3.0 Security Update: libssh (CVE-2023-6004)

The version of libssh installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-6004 advisory. - A flaw was found in libssh. By utilizing the ProxyCommand or ProxyJump feature, users can exploit unchecked...

4.8CVSS5.8AI score0.00449EPSS
Exploits0References2
IBM Security Bulletins
IBM Security Bulletins
added 2025/06/27 7:44 p.m.6 views

Security Bulletin: IBM Storage Ceph is vulnerable to Injection in the RHEL UBI (CVE-2023-6004)

Summary RHEL UBI is used by IBM Storage Ceph as the base operating system. CVE-2023-6004 This bulletin identifies the steps to take to address the vulnerability in the RHEL UBI. Vulnerability Details CVEID:CVE-2023-6004 DESCRIPTION: libssh could allow a local authenticated attacker to execute...

4.8CVSS8.5AI score0.00449EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.5 views

TencentOS Server 3: libssh (TSSA-2024:0219)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by multiple vulnerabilities as referenced in the TSSA-2024:0219 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities...

5.3CVSS6.5AI score0.01421EPSS
Exploits0References3
IBM Security Bulletins
IBM Security Bulletins
added 2025/05/14 7:56 p.m.15 views

Security Bulletin: Vulnerability in libssh affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge.

Summary Potential vulnerability in libssh has been identified that affects IBM watsonx Assistant Cartridge and IBM watsonx Orchestrate with watsonx Assistant Cartridge - Assistant Builder Component. . The vulnerability have been addressed. Refer to details for additional information. Vulnerabilit...

4.8CVSS7.4AI score0.00449EPSS
Exploits0Affected Software2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.9 views

Alibaba Cloud Linux 3 : 0119: libssh (ALINUX3-SA-2024:0119)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2024:0119 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2023-6004: A flaw was found in libssh...

5.3CVSS6.5AI score0.01421EPSS
Exploits0References3
OSV
OSV
added 2025/05/07 7:13 p.m.5 views

RLSA-2024:2504 Low: libssh security update

libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fixes: libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname CVE-2023-6004 libssh: Missing checks for return values for digests...

4.8CVSS7.7AI score0.01421EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/05/07 12:0 a.m.5 views

RockyLinux 9 : libssh (RLSA-2024:2504)

The remote RockyLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RLSA-2024:2504 advisory. libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname CVE-2023-6004 libssh: Missing checks for return values for...

5.3CVSS6.6AI score0.01421EPSS
Exploits0References5
CBLMariner
CBLMariner
added 2025/03/27 9:13 p.m.7 views

CVE-2023-6004 affecting package libssh for versions less than 0.10.6-1

CVE-2023-6004 affecting package libssh for versions less than 0.10.6-1. An upgraded version of the package is available that resolves this issue...

4.8CVSS5.8AI score0.00449EPSS
Exploits0
Rosalinux
Rosalinux
added 2025/01/28 7:59 p.m.30 views

Advisory ROSA-SA-2025-2674

software: libssh 0.9.8 OS: ROSA-CHROME packageevrstring: libssh-0.9.8-1 CVE-ID: CVE-2023-48795 BDU-ID: 2023-08853 CVE-Crit: HIGH CVE-DESC.: A vulnerability in the SSH protocol implementation is related to the ability to adjust packet sequence numbers during the connection negotiation process and...

5.9CVSS7.4AI score0.93305EPSS
Exploits4
IBM Security Bulletins
IBM Security Bulletins
added 2024/12/14 12:58 p.m.20 views

Security Bulletin: Vulnerabilities in libssh (CVE-2023-6004, CVE-2023-6918) affect Power HMC.

Summary The libssh library is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2023-6004 DESCRIPTION: libssh could allow a local authenticated attacker to execute arbitrary commands on the system, caused by a flaw in the...

5.3CVSS7.7AI score0.01421EPSS
Exploits0Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2024/08/23 9:49 a.m.47 views

Security Bulletin: IBM App Connect Enterprise Certified Container UBI updates

Summary IBM App Connect Enterprise Certified Container ACEcc is built on the Red Hat Universal Base Images. ACEcc operator versions 5.0.19 LTS, 12.0.1 LTS and 12.2.0 contain fixes to the listed CVEs found in the base images. This bulletin provides patch information to address the reported...

8.1CVSS9.3AI score0.8833EPSS
Exploits22Affected Software1
OSV
OSV
added 2024/06/14 1:59 p.m.28 views

RLSA-2024:3233 Low: libssh security update

libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fixes: libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname CVE-2023-6004 libssh: Missing checks for return values for digests...

5.3CVSS6.3AI score0.01421EPSS
Exploits0References3
Oracle linux
Oracle linux
added 2024/05/23 12:0 a.m.392 views

libssh security update

0.9.6-14 - Fix CVE-2023-48795 Prefix truncation attack on Binary Packet Protocol BPP - Fix CVE-2023-6918 Missing checks for return values for digests - Fix CVE-2023-6004 ProxyCommand/ProxyJump features allow injection of malicious code through hostname - Note: version is bumped from 12 to 14...

5.3CVSS8AI score0.93305EPSS
Exploits19
OSV
OSV
added 2024/05/22 12:0 a.m.38 views

ALSA-2024:3233 Low: libssh security update

libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fixes: libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname CVE-2023-6004 libssh: Missing checks for return values for digests...

5.3CVSS6.3AI score0.01421EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2024/05/22 12:0 a.m.44 views

Low: libssh security update

libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fixes: libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname CVE-2023-6004 libssh: Missing checks for return values for digests...

5.3CVSS6.8AI score0.01421EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/05/06 12:0 a.m.38 views

Oracle Linux 9 : libssh (ELSA-2024-2504)

The remote Oracle Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-2504 advisory. 0.10.4-13 - Bump up the version so that the version in 9.3 is lower. - Resolves: RHEL-19310, RHEL-19691, RHEL-17245 Tenable has extracted the preceding...

5.3CVSS6.5AI score0.01421EPSS
Exploits0References3
RedHat Linux
RedHat Linux
added 2024/04/30 10:22 a.m.234 views

Low: Red Hat Security Advisory: libssh security update

An update for libssh is now available for Red Hat Enterprise Linux 9. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

5.3CVSS6.7AI score0.01421EPSS
Exploits0References4
OSV
OSV
added 2024/04/30 12:0 a.m.23 views

ALSA-2024:2504 Low: libssh security update

libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fixes: libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname CVE-2023-6004 libssh: Missing checks for return values for digests...

5.3CVSS6.3AI score0.01421EPSS
Exploits0References6
AlmaLinux
AlmaLinux
added 2024/04/30 12:0 a.m.45 views

Low: libssh security update

libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fixes: libssh: ProxyCommand/ProxyJump features allow injection of malicious code through hostname CVE-2023-6004 libssh: Missing checks for return values for digests...

5.3CVSS5.6AI score0.01421EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2024/04/30 12:0 a.m.36 views

RHEL 9 : libssh (RHSA-2024:2504)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2024:2504 advisory. libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Security Fixes: libssh:...

5.3CVSS6.7AI score0.01421EPSS
Exploits0References8
Rows per page
Query Builder