Lucene search
K

24 matches found

OSV
OSV
added 2026/05/21 4:27 p.m.13 views

RLSA-2025:23480 Moderate: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand...

5.3CVSS6.8AI score0.00211EPSS
Exploits2References3
IBM Security Bulletins
IBM Security Bulletins
added 2026/03/31 3:30 p.m.13 views

Security Bulletin: Vulnerabilities in openssh library (CVE-2025-61984, CVE-2025-61985) affect Power HMC.

Summary The openssh library is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2025-61984 DESCRIPTION: ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources,...

3.6CVSS6.3AI score0.00211EPSS
Exploits2Affected Software1
OpenVAS
OpenVAS
added 2026/03/16 12:0 a.m.8 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2026-1506)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.6CVSS5.8AI score0.00211EPSS
Exploits2References2
Ubuntu
Ubuntu
added 2026/03/12 6:31 p.m.13 views

USN-8090-2: OpenSSH vulnerabilities

USN-8090-1 fixed vulnerabilities in OpenSSH. This update provides the corresponding updates for Ubuntu 20.04 LTS. Original advisory details: Jeremy Brown discovered that the OpenSSH GSSAPI Key Exchange incorrectly handled disconnecting clients. In non-default configurations where the...

8.2CVSS6.1AI score0.0218EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2026/03/05 12:0 a.m.7 views

Nutanix AHV : Multiple Vulnerabilities (NXSA-AHV-11.0.0.2)

The version of AHV installed on the remote host is prior to AHV-11.0.0.2. It is, therefore, affected by multiple vulnerabilities as referenced in the NXSA-AHV-11.0.0.2 advisory. - A flaw was found in libssh when using the ChaCha20 cipher with the OpenSSL library. If an attacker manages to exhaust...

8.1CVSS6.1AI score0.0144EPSS
Exploits10References9
Tenable Nessus
Tenable Nessus
added 2026/02/19 12:0 a.m.10 views

Amazon Linux 2 : openssh, --advisory ALAS2-2026-3175 (ALAS-2026-3175)

The version of openssh installed on the remote host is prior to 7.4p1-22. It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2-2026-3175 advisory. In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it...

4.3CVSS9AI score0.00211EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2026/02/03 12:0 a.m.4 views

RHEL 9 : openssh (RHSA-2026:1815)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:1815 advisory. OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files...

3.6CVSS6.2AI score0.00211EPSS
Exploits2References7
RedHat Linux
RedHat Linux
added 2026/01/15 11:56 a.m.15 views

Moderate: Red Hat Security Advisory: openssh security update

An update for openssh is now available for Red Hat Enterprise Linux 9.6 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

3.6CVSS6.7AI score0.00211EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2026/01/14 12:0 a.m.2 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2026-1033)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2026 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.6CVSS6.7AI score0.00211EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.4 views

MiracleLinux 9 : openssh-8.7p1-47.el9_7.ML.1 (AXSA:2025-11563:07)

The remote MiracleLinux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-11563:07 advisory. openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand CVE-2025-61984 openssh: OpenSSH: Null character in...

3.6CVSS6.4AI score0.00211EPSS
Exploits2References3
IBM Security Bulletins
IBM Security Bulletins
added 2026/01/06 9:8 p.m.10 views

Security Bulletin: AIX/VIOS is vulnerable to potential code execution (CVE-2025-61984, CVE-2025-61985) due to OpenSSH

Summary Vulnerabilities in OpenSSH could allow an attacker to execute code CVE-2025-61984, CVE-2025-61985. OpenSSH is used by AIX for remote login. Vulnerability Details CVEID:CVE-2025-61984 DESCRIPTION: ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain...

3.6CVSS7.5AI score0.00211EPSS
Exploits2Affected Software2
Tenable Nessus
Tenable Nessus
added 2025/12/29 12:0 a.m.21 views

Alibaba Cloud Linux 3 : 0198: openssh (ALINUX3-SA-2025:0198)

The remote Alibaba Cloud Linux 3 host has packages installed that are affected by multiple vulnerabilities as referenced in the ALINUX3-SA-2025:0198 advisory. Package updates are available for Alibaba Cloud Linux 3 that fix the following vulnerabilities: CVE-2025-61984: ssh in OpenSSH before 10.1...

3.6CVSS6.4AI score0.00211EPSS
Exploits2References3
OSV
OSV
added 2025/12/17 12:0 a.m.9 views

ALSA-2025:23479 Moderate: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand...

3.6CVSS7.4AI score0.00211EPSS
Exploits2References6
Tenable Nessus
Tenable Nessus
added 2025/12/11 12:0 a.m.6 views

EulerOS 2.0 SP13 : openssh (EulerOS-SA-2025-2505)

According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to...

3.6CVSS6.4AI score0.00211EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2025/11/17 12:0 a.m.2 views

SUSE: Security Advisory (SUSE-SU-2025:4098-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.6CVSS6.8AI score0.00211EPSS
Exploits2References5
SUSE Linux
SUSE Linux
added 2025/11/14 8:22 a.m.4 views

Security update for openssh

This update for openssh fixes the following issues: CVE-2025-61984: Fixed code execution via control characters in usernames when a ProxyCommand is used bsc1251198 Patch Instructions: To install this SUSE update use the SUSE recommended installation methods like YaST onlineupdate or "zypper patch...

5.3CVSS7.7AI score0.00211EPSS
Exploits2References4
OpenVAS
OpenVAS
added 2025/11/13 12:0 a.m.6 views

openSUSE Security Advisory (SUSE-SU-2025:4067-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

3.6CVSS6.8AI score0.00211EPSS
Exploits2References5
OSV
OSV
added 2025/10/31 2:13 p.m.7 views

OESA-2025-2586 openssh security update

OpenSSH is the premier connectivity tool for remote login with the SSH protocol. \ It encrypts all traffic to eliminate eavesdropping, connection hijacking, and \ other attacks. In addition, OpenSSH provides a large suite of secure tunneling \ capabilities, several authentication methods, and...

3.6CVSS8AI score0.00211EPSS
Exploits2References3
OSV
OSV
added 2025/10/31 2:13 p.m.3 views

OESA-2025-2584 openssh security update

OpenSSH is the premier connectivity tool for remote login with the SSH protocol. \ It encrypts all traffic to eliminate eavesdropping, connection hijacking, and \ other attacks. In addition, OpenSSH provides a large suite of secure tunneling \ capabilities, several authentication methods, and...

3.6CVSS8AI score0.00211EPSS
Exploits2References3
CVE
CVE
added 2025/10/06 12:0 a.m.1507 views

CVE-2025-61984

CVE-2025-61984 affects OpenSSH before 10.1. It allows control characters in usernames originating from untrusted sources (command line or %-sequence expansion in a config file), potentially enabling code execution when a ProxyCommand is used. A config file that provides a complete literal usernam...

3.6CVSS7.3AI score0.00211EPSS
Exploits2References8
Rows per page
Query Builder