Lucene search
K

33 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/19 12:0 a.m.4 views

MiracleLinux 8 : libssh-0.9.6-3.el8 (AXSA:2022-3399:01)

The remote MiracleLinux 8 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2022-3399:01 advisory. libssh: possible heap-based buffer overflow when rekeying CVE-2021-3634 Tenable has extracted the preceding description block directly from the MiracleLinux...

6.5CVSS6.8AI score0.04683EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/06/16 12:0 a.m.3 views

TencentOS Server 3: libssh (TSSA-2022:0209)

The version of Tencent Linux installed on the remote TencentOS Server 3 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2022:0209 advisory. Package updates are available for TencentOS Server 3 that fix the following vulnerabilities:...

6.5CVSS6.3AI score0.04683EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/05/14 12:0 a.m.10 views

Alibaba Cloud Linux 3 : 0204: libssh (ALINUX3-SA-2022:0204)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by a vulnerability as referenced in the ALINUX3-SA-2022:0204 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2021-3634: A flaw has been found in libssh in...

6.5CVSS6.2AI score0.04683EPSS
Exploits0References2
CBLMariner
CBLMariner
added 2025/01/12 9:15 a.m.45 views

CVE-2021-3634 affecting package libssh 0.9.5-2

CVE-2021-3634 affecting package libssh 0.9.5-2. This CVE either no longer is or was never applicable...

6.5CVSS9.7AI score0.04683EPSS
Exploits0
Oracle linux
Oracle linux
added 2024/05/23 12:0 a.m.392 views

libssh security update

0.9.6-14 - Fix CVE-2023-48795 Prefix truncation attack on Binary Packet Protocol BPP - Fix CVE-2023-6918 Missing checks for return values for digests - Fix CVE-2023-6004 ProxyCommand/ProxyJump features allow injection of malicious code through hostname - Note: version is bumped from 12 to 14...

5.3CVSS8AI score0.9378EPSS
Exploits18
Tenable Nessus
Tenable Nessus
added 2024/02/21 12:0 a.m.53 views

SUSE SLES12 Security Update : libssh (SUSE-SU-2024:0539-1)

The remote SUSE Linux SLES12 / SLESSAP12 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0539-1 advisory. Update to version 0.9.8 jscPED-7719: Fix CVE-2023-6004: Command injection using proxycommand bsc1218209 Fix CVE-2023-48795: Potenti...

9.3CVSS7.1AI score0.9378EPSS
Exploits7References28
OpenVAS
OpenVAS
added 2024/02/21 12:0 a.m.16 views

SUSE: Security Advisory (SUSE-SU-2024:0539-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.4AI score0.9378EPSS
Exploits7References14
Tenable Nessus
Tenable Nessus
added 2024/02/20 12:0 a.m.36 views

SUSE SLES15 Security Update : libssh (SUSE-SU-2024:0525-1)

The remote SUSE Linux SLES15 / SLESSAP15 host has packages installed that are affected by multiple vulnerabilities as referenced in the SUSE-SU-2024:0525-1 advisory. Update to version 0.9.8 jscPED-7719: Fix CVE-2023-6004: Command injection using proxycommand bsc1218209 Fix CVE-2023-48795: Potenti...

9.3CVSS7.1AI score0.9378EPSS
Exploits7References28
OpenVAS
OpenVAS
added 2024/02/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2024:0525-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8.4AI score0.9378EPSS
Exploits7References14
OSV
OSV
added 2023/05/25 2:5 p.m.7 views

CLSA-2023-1685023501 libssh: Fix of CVE-2021-3634

CVE-2021-3634: create a separate length for sessionid...

6.5CVSS6.7AI score0.04683EPSS
Exploits0References1
IBM Security Bulletins
IBM Security Bulletins
added 2022/10/25 3:2 p.m.45 views

Security Bulletin: IBM QRadar SIEM Application Framework Base Image is vulnerable to using components with Known Vulnerabilities

Summary The product includes vulnerable components e.g., framework libraries that may be identified and exploited with automated tools. Vulnerability Details CVEID:CVE-2021-38185 DESCRIPTION: GNU cpio could allow a remote attacker to execute arbitrary code on the system, caused by an integer...

7.8CVSS8.2AI score0.04683EPSS
Exploits2Affected Software1
IBM Security Bulletins
IBM Security Bulletins
added 2022/06/22 10:23 a.m.33 views

Security Bulletin: IBM App Connect Enterprise Certified Container operands may be vulnerable to arbitrary code execution due to CVE-2021-3634

Summary libssh is part of the base OS modules in all operand images in IBM App Connect Enterprise Certified Container. IBM App Connect Enterprise Certified Container is not directly vulnerable under standard operations, but custom use of the images may be vulnerable to arbitrary code execution...

6.5CVSS1AI score0.04683EPSS
Exploits0Affected Software1
Tenable Nessus
Tenable Nessus
added 2022/05/18 12:0 a.m.25 views

Rocky Linux 8 : libssh (RLSA-2022:2031)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:2031 advisory. - A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them ...

6.5CVSS6.2AI score0.04683EPSS
Exploits0References5
Tenable Nessus
Tenable Nessus
added 2022/05/18 12:0 a.m.40 views

Oracle Linux 8 : libssh (ELSA-2022-2031)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-2031 advisory. - Fix CVE-2021-3634: Fix possible heap-buffer overflow when rekeying with different key exchange mechanism Tenable has extracted the preceding description block...

6.5CVSS6.4AI score0.04683EPSS
Exploits0References2
Oracle linux
Oracle linux
added 2022/05/17 12:0 a.m.83 views

libssh security, bug fix, and enhancement update

0.9.6-3 - Remove STI tests 0.9.6-2 - Remove bad patch causing errors - Adding BuildRequires for openssh SSHD support 0.9.6-1 - Fix CVE-2021-3634: Fix possible heap-buffer overflow when rekeying with different key exchange mechanism - Rebase to version 0.9.6 - Rename SSHDEXECUTABLE to SSHEXECUTABL...

6.5CVSS3.6AI score0.04683EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2022/05/12 12:0 a.m.19 views

AlmaLinux 8 : libssh (ALSA-2022:2031)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:2031 advisory. - A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is...

6.5CVSS6.2AI score0.04683EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2022/05/11 12:0 a.m.40 views

RHEL 8 : libssh (RHSA-2022:2031)

The remote Redhat Enterprise Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RHSA-2022:2031 advisory. libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. The following packages have been...

6.5CVSS6.8AI score0.04683EPSS
Exploits0References8
RedHat Linux
RedHat Linux
added 2022/05/10 2:10 p.m.60 views

Low: Red Hat Security Advisory: libssh security, bug fix, and enhancement update

An update for libssh is now available for Red Hat Enterprise Linux 8. Red Hat Product Security has rated this update as having a security impact of Low. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

6.5CVSS6.8AI score0.04683EPSS
Exploits0References5
Rockylinux
Rockylinux
added 2022/05/10 8:14 a.m.42 views

libssh security, bug fix, and enhancement update

An update is available for libssh. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list libssh is a library which implements the SSH protocol. It can be used to...

6.5CVSS7.4AI score0.04683EPSS
Exploits0
OSV
OSV
added 2022/05/10 8:14 a.m.28 views

ALSA-2022:2031 Low: libssh security, bug fix, and enhancement update

libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. The following packages have been upgraded to a later upstream version: libssh 0.9.6. BZ1896651 Security Fixes: libssh: possible heap-based buffer overflow when rekeying CVE-2021-3634...

6.5CVSS6.8AI score0.04683EPSS
Exploits0References2
Rows per page
Query Builder