Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

821 matches found

OpenVAS
OpenVASadded 2020/01/09 12:0 a.m.22 views

Fedora Update for libssh2 FEDORA-2019-91529f19e4

The remote host is missing an update for the Copyright C 2020 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.1CVSS8.1AI score0.0142EPSS
Exploits1References2
RedhatCVE
RedhatCVEadded 2020/01/04 3:44 p.m.21 views

CVE-2019-3863

A flaw was found in libssh2. A server could send a multiple keyboard interactive response messages, whose total length are greater than the unsigned char max characters. This value is used as an index to copy memory causing in an out of bounds memory write error. The highest threat from this...

8.8CVSS3.2AI score0.08613EPSS
Exploits0References3
RedhatCVE
RedhatCVEadded 2020/01/04 3:44 p.m.26 views

CVE-2019-3861

An out of bounds read flaw was discovered in libssh2 in the way SSH packets with a padding length value greater than the packet length are parsed. A remote attacker who compromises a SSH server may be able to cause a denial of service or read data in the client memory...

9.1CVSS4AI score0.01534EPSS
Exploits0References4
Tenable Nessus
Tenable Nessusadded 2019/12/31 12:0 a.m.32 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : libssh2 Multiple Vulnerabilities (NS-SA-2019-0252)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has libssh2 packages installed that are affected by multiple vulnerabilities: - An out of bounds read flaw was discovered in libssh2 before 1.8.1 when a specially crafted SFTP packet is received from the server. A remote attack...

9.1CVSS7.3AI score0.02187EPSS
Exploits0References3
Photon
Photonadded 2019/12/20 12:0 a.m.55 views

Home Download Photon OS User Documentation FAQ Security Advisories Related Information Lightwave - PHSA-2019-2.0-0196

An update of 'libmspack', 'git', 'oniguruma', 'ruby', 'libssh2', 'libxslt' packages of Photon OS has been released...

9.3CVSS0.9AI score0.14783EPSS
Exploits9
Tenable Nessus
Tenable Nessusadded 2019/12/18 12:0 a.m.40 views

EulerOS 2.0 SP3 : libssh2 (EulerOS-SA-2019-2618)

According to the version of the libssh2 package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to...

8.1CVSS6.9AI score0.0142EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2019/12/09 12:0 a.m.32 views

EulerOS 2.0 SP5 : libssh2 (EulerOS-SA-2019-2536)

According to the version of the libssh2 package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to...

8.1CVSS6.9AI score0.0142EPSS
Exploits1References2
Tenable Nessus
Tenable Nessusadded 2019/12/04 12:0 a.m.38 views

EulerOS 2.0 SP2 : libssh2 (EulerOS-SA-2019-2473)

According to the version of the libssh2 package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to...

8.1CVSS6.9AI score0.0142EPSS
Exploits1References2
OSV
OSVadded 2019/11/30 1:6 p.m.9 views

MGASA-2019-0343 Updated libssh2 packages fix security vulnerability

The updated packages fix a security vulnerability: In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary out-of-bounds offset for a subsequent memory read. A crafted SSH server may be...

8.1CVSS8AI score0.0142EPSS
Exploits1References6
Mageia
Mageiaadded 2019/11/30 1:6 p.m.45 views

Updated libssh2 packages fix security vulnerability

The updated packages fix a security vulnerability: In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary out-of-bounds offset for a subsequent memory read. A crafted SSH server may be...

8.1CVSS2.8AI score0.0142EPSS
Exploits1References5
Tenable Nessus
Tenable Nessusadded 2019/11/27 12:0 a.m.27 views

EulerOS 2.0 SP8 : libssh2 (EulerOS-SA-2019-2287)

According to the version of the libssh2 package installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to...

8.1CVSS6.9AI score0.0142EPSS
Exploits1References2
OpenVAS
OpenVASadded 2019/11/17 12:0 a.m.31 views

Fedora Update for libssh2 FEDORA-2019-ec04c34768

The remote host is missing an update for the Copyright C 2019 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

8.2AI score
Exploits0References2
Fedora
Fedoraadded 2019/11/16 1:4 a.m.38 views

[SECURITY] Fedora 30 Update: libssh2-1.9.0-3.fc30

libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS22, SECSH-USERAUTH25, SECSH-CONNECTION23, SECSH-ARCH20, SECSH-FILEXFER06, SECSH-DHGEX04, and SECSH-NUMBERS10...

8.1CVSS2.3AI score0.424EPSS
Exploits2
Tenable Nessus
Tenable Nessusadded 2019/11/14 12:0 a.m.37 views

Debian DLA-1991-1 : libssh2 security update

In libssh2, SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary out-of-bounds offset for a subsequent memory read. A crafted SSH server may be able to disclose sensitive information or cause a denial of service condition on th...

8.1CVSS6.7AI score0.0142EPSS
Exploits1References3
OpenVAS
OpenVASadded 2019/11/14 12:0 a.m.14 views

Debian: Security Advisory (DLA-1991-1)

The remote host is missing an update for the Debian SPDX-FileCopyrightText: 2019 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS8.1AI score0.0142EPSS
Exploits1References3
Debian
Debianadded 2019/11/13 2:54 p.m.112 views

[SECURITY] [DLA 1991-1] libssh2 security update

Package : libssh2 Version : 1.4.3-4.1+deb8u6 CVE ID : CVE-2019-17498 Debian Bug : 943562 In libssh2, SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary out-of-bounds offset for a subsequent memory read. A crafted SSH server m...

8.1CVSS8.2AI score0.0142EPSS
Exploits1
OSV
OSVadded 2019/11/13 12:0 a.m.20 views

DLA-1991-1 libssh2 - security update

Bulletin has no description...

8.1CVSS7.8AI score0.0142EPSS
Exploits1
NCSC
NCSCadded 2019/11/11 12:0 a.m.3 views

Vulnerability fixed in libSSH2

A vulnerability has been fixed in libSSH2. The vulnerability can lead to the release of sensitive information or a denial-of-service. -= SUSE =- SUSE has made updates available to fix the vulnerability fix in SUSE 12. You can install these custom packages using 'YaST'. You can also download the...

8.1CVSS6.7AI score0.0142EPSS
Exploits1
Fedora
Fedoraadded 2019/11/07 1:19 a.m.34 views

[SECURITY] Fedora 31 Update: libssh2-1.9.0-3.fc31

libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS22, SECSH-USERAUTH25, SECSH-CONNECTION23, SECSH-ARCH20, SECSH-FILEXFER06, SECSH-DHGEX04, and SECSH-NUMBERS10...

8.1CVSS2.3AI score0.0142EPSS
Exploits1
myhack58
myhack58added 2019/11/07 12:0 a.m.190 views

For libssh2 integer overflow vulnerability (CVE-2019-17498)analysis-vulnerability warning-the black bar safety net

0x01 vulnerability mining In 2019 3 December 18, Canonical Ltd. Chris Coulson discloses libssh2 nine of vulnerability, CVE-2019-3855 to CVE-2019-3863-in. These vulnerabilities have been in the libssh2 v1. 8. 1 repair. At the time, my colleague Pavel Avgustinov note that fix vulnerabilities report...

9.3CVSS0.16241EPSS
Exploits1
Rows per page
Query Builder