Lucene search
K

42 matches found

IBM Security Bulletins
IBM Security Bulletins
added 2025/05/27 2:31 p.m.17 views

Security Bulletin: Vulnerability in OpenSSH affects IBM Integrated Analytics System (Sailfish) [CVE-2020-14145].

Summary The OpenSSH package is used by IBM Integrated Analytics System . IBM Integrated Analytics System has addressed the applicable CVECVE-2020-14145. Vulnerability Details CVEID:CVE-2020-14145 DESCRIPTION: OpenSSH is vulnerable to a man-in-the-middle attack, caused by an observable discrepancy...

5.9CVSS6.3AI score0.02057EPSS
Exploits2Affected Software1
OpenVAS
OpenVAS
added 2024/11/26 12:0 a.m.28 views

QNAP QuTS hero Multiple OpenSSH Vulnerabilities (QSA-24-37)

QNAP QuTS hero is prone to multiple vulnerabilities in OpenSSH. SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE = "cpe:/o:qnap:qutshero";...

7.5AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.207 views

RHEL 6 : openssh (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openssh: loading of untrusted PKCS11 modules in ssh-agent CVE-2016-10009 - openssh: scp allows command...

8.4AI score0.58568EPSS
Exploits38References15
Tenable Nessus
Tenable Nessus
added 2023/11/06 12:0 a.m.23 views

Rocky Linux 8 : openssh (RLSA-2021:4368)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2021:4368 advisory. - The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows...

5.9CVSS6.8AI score0.02057EPSS
Exploits2References11
OSV
OSV
added 2023/08/31 12:16 p.m.2 views

BELL-CVE-2020-14145 CVE-2020-14145 does not affect BellSoft software

Bulletin has no description...

5.9CVSS7.3AI score0.02057EPSS
Exploits2References1
F5 Networks
F5 Networks
added 2023/02/21 6:53 p.m.126 views

K48050136: OpenSSH client vulnerability CVE-2020-14145

Security Advisory Description The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts where no host key for the server has been cached by the...

5.9CVSS6.8AI score0.02057EPSS
Exploits2Affected Software15
Tenable Nessus
Tenable Nessus
added 2022/10/26 12:0 a.m.28 views

F5 Networks BIG-IP : OpenSSH client vulnerability (K48050136)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.9 / 16.1.4 / 17.1.0. It is, therefore, affected by a vulnerability as referenced in the K48050136 advisory. The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in th...

5.9CVSS6.8AI score0.02057EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2022/02/09 12:0 a.m.27 views

AlmaLinux 8 : openssh (ALSA-2021:4368)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2021:4368 advisory. - The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-midd...

5.9CVSS6.8AI score0.02057EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/11/22 12:0 a.m.21 views

OpenBSD OpenSSH Information Disclosure Vulnerability (CVE-2020-14145)

OpenBSD OpenSSH is prone to an information disclosure vulnerability. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free...

5.9CVSS6AI score0.02057EPSS
Exploits2References1
Oracle linux
Oracle linux
added 2021/11/16 12:0 a.m.63 views

openssh security update

8.0p1-10 - sshd -T requires -C when 'Match' is used in sshdconfig 1836277 8.0p1-9 - CVE-2020-14145 openssh: Observable Discrepancy leading to an information leak in the algorithm negotiation 1882252 - Hostbased ssh authentication fails if session ID contains a '/' 1944125 8.0p1-8 - ssh doesnt...

5.9CVSS6.5AI score0.02057EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2021/11/09 5:59 p.m.66 views

Moderate: Red Hat Security Advisory: openssh security update

An update for openssh is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from th...

5.9CVSS6.8AI score0.02057EPSS
Exploits2References11
AlmaLinux
AlmaLinux
added 2021/11/09 9:11 a.m.49 views

Moderate: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: Observable discrepancy leading to an information leak in the algorithm negotiation...

5.9CVSS6.3AI score0.02057EPSS
Exploits2References1
Rockylinux
Rockylinux
added 2021/11/09 9:11 a.m.77 views

openssh security update

An update is available for openssh. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list OpenSSH is an SSH protocol implementation supported by a number of Linux, UNI...

5.9CVSS6.2AI score0.02057EPSS
Exploits2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.25 views

SUSE: Security Advisory (SUSE-SU-2020:3736-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS6.1AI score0.02057EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2020:3844-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.5AI score0.02057EPSS
Exploits2References6
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.15 views

SUSE: Security Advisory (SUSE-SU-2021:0022-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7.5AI score0.02057EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2021/04/13 12:0 a.m.30 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2021-1720)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.3AI score0.03422EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/04/13 12:0 a.m.28 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2021-1746)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.1CVSS6.3AI score0.03422EPSS
Exploits2References2
OSV
OSV
added 2021/04/07 11:2 a.m.4 views

OESA-2021-1120 openssh security update

OpenSSH is the premier connectivity tool for remote login with the SSH protocol. It encrypts all traffic to eliminate eavesdropping, connection hijacking, and other attacks. In addition, OpenSSH provides a large suite of secure tunneling capabilities, several authentication methods, and...

5.9CVSS8.5AI score0.02057EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2021/03/24 12:0 a.m.37 views

EulerOS 2.0 SP5 : openssh (EulerOS-SA-2021-1694)

According to the version of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows...

5.9CVSS6.9AI score0.02057EPSS
Exploits2References2
Rows per page
Query Builder