Lucene search
K

64 matches found

RedhatCVE
RedhatCVE
added last week6 views

CVE-2026-59999

A flaw was found in sshd, the OpenSSH server daemon. When DisableForwarding=yes is configured to prevent network traffic forwarding, it incorrectly fails to take precedence over PermitTunnel=yes. This allows a remote attacker to bypass intended security restrictions and establish a tunnel,...

7.5CVSS6AI score0.0014EPSS
Exploits0References6
OSV
OSV
added 2026/07/08 1:16 a.m.4 views

DEBIAN-CVE-2026-59999

In sshd in OpenSSH before 10.4, DisableForwarding=yes was supposed to take precedence over PermitTunnel=yes, but did not...

7.5CVSS5.9AI score0.0014EPSS
Exploits0References1
CVE
CVE
added 2026/07/08 12:13 a.m.47 views

CVE-2026-59999

CVE-2026-59999 affects OpenSSH sshd prior to 10.4, where the intended precedence of DisableForwarding=yes over PermitTunnel=yes did not hold. The available documents confirm the root cause is an ordering/precedence bug in sshd, but do not provide concrete details on affected product versions beyo...

7.5CVSS5.9AI score0.0014EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 2026/07/08 12:13 a.m.6 views

CVE-2026-59999

In sshd in OpenSSH before 10.4, DisableForwarding=yes was supposed to take precedence over PermitTunnel=yes, but did not...

7.5CVSS5.9AI score0.0014EPSS
Exploits0
Cvelist
Cvelist
added 2026/07/08 12:13 a.m.130 views

CVE-2026-59999

In sshd in OpenSSH before 10.4, DisableForwarding=yes was supposed to take precedence over PermitTunnel=yes, but did not...

5.9CVSS0.0014EPSS
Exploits0References3
EUVD
EUVD
added 2026/07/08 12:13 a.m.7 views

EUVD-2026-42142

In sshd in OpenSSH before 10.4, DisableForwarding=yes was supposed to take precedence over PermitTunnel=yes, but did not...

5.9CVSS5.9AI score0.0014EPSS
Exploits0References3
Positive Technologies
Positive Technologies
added 2026/07/08 12:0 a.m.8 views

PT-2026-56290

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to 10.4 Description In sshd, the configuration setting DisableForwarding=yes failed to take precedence over PermitTunnel=yes, allowing tunnel forwarding even when it should have been disabled. Recommendations Update to...

7.5CVSS6.1AI score0.0014EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2026/07/08 12:0 a.m.6 views

Linux Distros Unpatched Vulnerability : CVE-2026-59999

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In sshd in OpenSSH before 10.4, DisableForwarding=yes was supposed to take precedence over PermitTunnel=yes, but did not. CVE-2026-59999 Note that Nessus relies...

7.5CVSS6.1AI score0.0014EPSS
Exploits0References4
OSV
OSV
added 2026/04/09 9:32 p.m.7 views

JLSEC-2026-73 In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the...

In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding...

4.3CVSS6.7AI score0.00172EPSS
Exploits0References10
Broadcom
Broadcom
added 2026/01/27 12:0 a.m.17 views

The DisableForwarding directive does not fully adhere to the intended functionality as documented (CVE-2025-32728).

Brocade has become aware of an Expected Behavior Violation vulnerability in OpenSSH releases 7.4 through 9.9. In affected versions of sshd, the DisableForwarding directive does not disable X11 and agent forwarding, which may allow unintended access under certain configurations...

4.3CVSS5.9AI score0.00172EPSS
Exploits0
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.3 views

MiracleLinux 7 : openssh-7.4p1-23.0.3.0.2.el7.AXS7 (AXSA:2025-10184:03)

The remote MiracleLinux 7 host has packages installed that are affected by a vulnerability as referenced in the AXSA:2025-10184:03 advisory. CVE-2025-32728: fix logic error in DisableForwarding option CVEs: CVE-2025-32728 In sshd in OpenSSH before 10.0, the DisableForwarding directive does not...

4.3CVSS6.4AI score0.00172EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2026/01/07 12:0 a.m.5 views

EulerOS 2.0 SP9 : openssh (EulerOS-SA-2026-1009)

According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent...

6.8CVSS6.8AI score0.06997EPSS
Exploits4References3
OSV
OSV
added 2025/12/24 9:14 a.m.7 views

CLSA-2025-1766567686 Fix CVE(s): CVE-2025-32728

SECURITY UPDATE: DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding. - debian/patches/CVE-2025-32728.patch: fix logic error in DisableForwarding option - CVE-2025-32728...

4.3CVSS5.8AI score0.00172EPSS
Exploits0References1
Rosalinux
Rosalinux
added 2025/11/10 6:23 a.m.25 views

Advisory ROSA-SA-2025-3076

Software: openssh 8.0p1 OS: ROSA Virtualization 3.0 unaffected versions = openssh-8.0p1-26.0.2.2.rv30 affected versions openssh-8.0p1-26.0.2.2.rv30 CVE-ID: CVE-2020-15778 BDU-ID: CVE-Crit: HIGH CVE-DESC.: A vulnerability in the toremote scp.c function of the OpenSSH cryptographic security tool...

7.8CVSS7.1AI score0.93305EPSS
Exploits25
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2025-10504

Malicious code in bioql PyPI...

4.3CVSS5.6AI score0.00172EPSS
Exploits0References7
Tenable Nessus
Tenable Nessus
added 2025/09/16 12:0 a.m.8 views

EulerOS Virtualization 2.13.0 : openssh (EulerOS-SA-2025-2179)

According to the versions of the openssh packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11...

4.3CVSS6.4AI score0.00172EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/19 12:0 a.m.5 views

Linux Distros Unpatched Vulnerability : CVE-2025-32728

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding...

4.3CVSS6.5AI score0.00172EPSS
Exploits0References3
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.7 views

EulerOS 2.0 SP11 : openssh (EulerOS-SA-2025-1937)

According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent...

4.3CVSS6.5AI score0.00172EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/08/14 12:0 a.m.6 views

EulerOS 2.0 SP11 : openssh (EulerOS-SA-2025-1963)

According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent...

4.3CVSS6.5AI score0.00172EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/07/21 12:0 a.m.7 views

EulerOS 2.0 SP12 : openssh (EulerOS-SA-2025-1832)

According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent...

4.3CVSS6.5AI score0.00172EPSS
Exploits0References2
Rows per page
Query Builder