Cisco Unified Computing System Remote Code Execution Vulnerability (regreSSHion) (cisco cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco Unified Computing System is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco Unified Computing System due to a signal handler race condition found in sshd, where a client does not authenticate within LoginGraceTime...

Cisco UCS Director Remote Code Execution Vulnerability (regreSSHion) (cisco cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco UCS Director is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco UCS Directory due to a signal handler race condition found in sshd, where a client does not authenticate within LoginGraceTime seconds, after which th...

Cisco NX-OS Software Remote Code Execution Vulnerability (regreSSHion) (cisco cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco NX-OS Software is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco NX-OS Software due to a signal handler race condition found in sshd, where a client does not authenticate within LoginGraceTime seconds, after which...

Exploit for Race Condition in Sonicwall Sma_6200_Firmware

🚨 OpenSSH regreSSHion CVE-2024-6387 & CVE-2024-6409 Una exp...

Siemens SIMATIC S7-1500 Signal Handler Race Condition (CVE-2024-6387)

A security regression CVE-2006-5051 was discovered in OpenSSH's server sshd. There is a race condition which can lead to sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period. This plugin...

Exploit for Race Condition in Openbsd Openssh

NO REGRESSH - Enhanced CVE-2024-6387 Framework A complete Pyt...

TencentOS Server 4: openssh (TSSA-2024:0249)

The version of Tencent Linux installed on the remote TencentOS Server 4 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the TSSA-2024:0249 advisory. Package updates are available for TencentOS Server 4 that fix the following vulnerabilities:...

SUSE: Security Advisory (SUSE-SU-2024:2275-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Security Bulletin: IBM Db2 Big SQL on Cloud Pak for Data is vulnerable to OpenSSH vulnerability CVE-2024-6387

Summary IBM Db2 Big SQL on Cloud Pak for Data embeds a variant of the IBM Db2 database server that runs in MPP mode. For MPP functionality such as scale-out, internally the server uses the secure shell SSH protocol for inter-pod communication. SSH protocol is not exposed to external users or...

Security Bulletin: IBM Watson CP4D Data Stores is vulnerable to OpenSSH arbitrary code execution vulnerability (CVE-2024-6387)

Summary Potential OpenSSH arbitrary code execution vulnerabilitiy CVE-2024-6387 has been identified that could affect IBM Watson CP4D Data Stores. The vulnerability has been addressed. Refer to details for additional information. Vulnerability Details CVEID:CVE-2024-6387 DESCRIPTION: OpenSSH coul...

Security Bulletin: IBM Virtualization Engine TS7700 is susceptible to remote code execution due to the use of OpenSSH (CVE-2024-6387)

Summary IBM Virtualization Engine TS7700 is susceptible to remote code execution due to the use of OpenSSH CVE-2024-6387. OpenSSH is used by TS7700 to allow access from the TSSC Console by IBM authorized service personnel. Vulnerability Details CVEID:CVE-2024-6387 DESCRIPTION: OpenSSH could allow...

Security Bulletin: IBM Match 360 vulnerable to OpenSSH code execution (CVE-2024-6387)

Summary IBM Match 360 is vulnerable to remote OpenSSH code execution. OpenSSH could allow a remote attacker to execute arbitrary code on the system, caused by a signal handler race condition. By sending a specially crafted request, an attacker could exploit this vulnerability to execute arbitrary...

Security Bulletin: Red Hat OpenShift on IBM Cloud is affected by an OpenSSH security vulnerability (CVE-2024-6387)

Summary Red Hat OpenShift on IBM Cloud is affected by a security vulnerability found in OpenSSH which could allow a remote attacker to execute arbitrary commands on the system with root privileges CVE-2024-6387. Vulnerability Details CVEID: CVE-2024-6387 Description: OpenSSH could allow a remote...

Exploit for Race Condition in Openbsd Openssh

CVE-2024-6387.py - PoC...

Cisco Firepower Management Center Software RCE (cisco-sa-openssh-rce-2024)

A security regression CVE-2006-5051 was discovered in OpenSSH's server sshd. There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period. Note that Nessu...

Cisco Firepower Management Center Software RCE (cisco-sa-openssh-rce-2024)

A security regression CVE-2006-5051 was discovered in OpenSSH's server sshd. There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period. Note that Nessu...

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-2604)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-2614)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

Fortinet FortiWeb OpenSSH regreSSHion Attack (CVE-2024-6387) (FG-IR-24-258)

The version of FortiWeb installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the FG-IR-24-258 advisory. - A race condition in sshd affecting versions between 8.5p1 and 9.7p1 inclusive may allow arbitrary code execution with root...

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-2454)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...