Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

8 matches found

Snyk
Snykadded 2026/05/22 5:32 a.m.6 views

Allocation of Resources Without Limits or Throttling

Overview golang.org/x/crypto/ssh is a SSH client and server Affected versions of this package are vulnerable to Allocation of Resources Without Limits or Throttling via the public key parsers. An attacker can exhaust CPU resources by submitting crafted RSA or DSA public keys with excessively larg...

7.5CVSS5.8AI score0.00035EPSS
Exploits0References2
AstraLinux
AstraLinuxadded 2026/05/20 5:53 a.m.3 views

Astra Linux - уязвимость в golang-go.crypto

The x/crypto/ssh package in version 0.0.0-20211202192323-5770296d904e of golang.org/x/crypto allows an attacker to cause a panic in an SSH server...

7.5CVSS6.8AI score0.00026EPSS
Exploits0References1
Redos
Redosadded 2026/01/29 12:0 a.m.4 views

ROS-20260129-73-0079

A vulnerability in the SSH server of the library for the Go crypto programming language is related to unrestricted resource allocation. Exploitation of the vulnerability could allow a remote attacker to affect the availability of protected information...

5.3CVSS5.9AI score0.00046EPSS
Exploits0
Redos
Redosadded 2026/01/29 12:0 a.m.5 views

ROS-20260129-73-0062

A vulnerability in the ssh-agent library ssh-agent server for the Go crypto programming language involves reading beyond buffer boundaries in memory. Exploitation of the vulnerability could allow an attacker acting remotely to cause a denial of service...

5.3CVSS6AI score0.00014EPSS
Exploits0
OSV
OSVadded 2026/01/15 9:13 a.m.7 views

RLSA-2026:0437 Important: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

7.5CVSS6.8AI score0.00018EPSS
Exploits1References2
RedHat Linux
RedHat Linuxadded 2025/03/25 2:24 p.m.2 views

golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh

A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange...

7.5CVSS7.1AI score0.00607EPSS
Exploits0References7
GithubExploit
GithubExploitadded 2022/04/20 8:31 p.m.40 views

Exploit for CVE-2022-21449

CVE-2022-21449-TLS-PoC CVE-2022-21449 also dubbed Psychic Si...

7.5CVSS6.9AI score0.34335EPSS
Exploits6
RedHat Linux
RedHat Linuxadded 2020/08/06 8:19 p.m.3 views

golang.org/x/crypto: Processing of crafted ssh-ed25519 public keys allows for panic

A denial of service vulnerability was found in the SSH package of the golang.org/x/crypto library. An attacker could exploit this flaw by supplying crafted SSH ed25519 keys to cause a crash in applications that use this package as either an SSH client or server...

7.5CVSS7.2AI score0.18682EPSS
Exploits6References5
Rows per page
Query Builder