Lucene search
K

20 matches found

Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.9 views

Cisco Expressway Series Remote Code Execution Vulnerability (regreSSHion) (cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco Expressway Series is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco Expressway Series due to a signal handler race condition found in sshd, where a client does not authenticate within LoginGraceTime seconds, after...

8.1CVSS7.7AI score0.99506EPSS
Exploits68References3
Tenable Nessus
Tenable Nessus
added 2026/05/08 12:0 a.m.9 views

Cisco Adaptive Security Appliance (ASA) Software Remote Code Execution Vulnerability (regreSSHion) (cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco Adaptive Security Appliance ASA Software is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco Adaptive Security Appliance ASA Software due to a signal handler race condition found in sshd, where a client does not...

8.1CVSS7.6AI score0.99506EPSS
Exploits68References3
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.6 views

Cisco Unified Communications Manager IM & Presence Service Remote Code Execution Vulnerability (regreSSHion) (cisco-sa-openssh-rce-2024)

According to its self-reported version, CCisco Unified Communications Manager IM & Presence Service is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco Unified Communications Manager IM & Presence Service due to a signal handler race condition found in sshd,...

8.1CVSS7.6AI score0.99506EPSS
Exploits68References3
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.5 views

Cisco UCS Director Remote Code Execution Vulnerability (regreSSHion) (cisco cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco UCS Director is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco UCS Directory due to a signal handler race condition found in sshd, where a client does not authenticate within LoginGraceTime seconds, after which th...

8.1CVSS7.6AI score0.99506EPSS
Exploits68References3
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.8 views

Cisco Emergency Responder Remote Code Execution Vulnerability (regreSSHion) (cisco cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco Emergency Responder is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco Emergency Responder due to a signal handler race condition found in sshd, where a client does not authenticate within LoginGraceTime seconds,...

8.1CVSS7.6AI score0.99506EPSS
Exploits68References3
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.8 views

Cisco Secure Email and Web Manager Remote Code Execution Vulnerability (regreSSHion) (cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco Secure Email and Web Manager is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco Secure Email and Web Manager due to a signal handler race condition found in sshd, where a client does not authenticate within...

8.1CVSS7.6AI score0.99506EPSS
Exploits68References3
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.5 views

Cisco Smart Software Manager On-Prem Remote Code Execution Vulnerability (regreSSHion) (cisco cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco Smart Software Manager On-Prem is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco Smart Software Manager On-Prem due to a signal handler race condition found in sshd, where a client does not authenticate within...

8.1CVSS7.6AI score0.99506EPSS
Exploits68References3
Tenable Nessus
Tenable Nessus
added 2026/05/05 12:0 a.m.7 views

Cisco Secure Email Gateway Remote Code Execution Vulnerability (regreSSHion) (cisco cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco Secure Email Gateway is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco Secure Email Gateway due to a signal handler race condition found in sshd, where a client does not authenticate within LoginGraceTime seconds,...

8.1CVSS7.6AI score0.99506EPSS
Exploits68References3
Tenable Nessus
Tenable Nessus
added 2026/04/28 12:0 a.m.5 views

Cisco IOS XE Software Remote Code Execution Vulnerability (regreSSHion) (cisco cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco IOS XE Software is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco IOS XE Software due to a signal handler race condition found in sshd, where a client does not authenticate within LoginGraceTime seconds, after whi...

8.1CVSS8.3AI score0.99506EPSS
Exploits68References3
Tenable Nessus
Tenable Nessus
added 2026/04/28 12:0 a.m.5 views

Cisco IOS XR Software Remote Code Execution Vulnerability (regreSSHion) (cisco cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco IOS XR Software is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco IOS XR Software due to a signal handler race condition found in sshd, where a client does not authenticate within LoginGraceTime seconds, after whi...

8.1CVSS8.3AI score0.99506EPSS
Exploits68References3
Tenable Nessus
Tenable Nessus
added 2026/04/28 12:0 a.m.6 views

Cisco NX-OS Software Remote Code Execution Vulnerability (regreSSHion) (cisco cisco-sa-openssh-rce-2024)

According to its self-reported version, Cisco NX-OS Software is affected by a vulnerability. - A remote code execution vulnerability exists in Cisco NX-OS Software due to a signal handler race condition found in sshd, where a client does not authenticate within LoginGraceTime seconds, after which...

8.1CVSS8.2AI score0.99506EPSS
Exploits68References3
OSV
OSV
added 2024/08/12 1:38 p.m.4 views

CVE-2024-7589

A signal handler in sshd8 may call a logging function that is not async-signal-safe. The signal handler is invoked when a client does not authenticate within the LoginGraceTime seconds 120 by default. This signal handler executes in the context of the sshd8's privileged code, which is not sandbox...

8.1CVSS7.8AI score0.99506EPSS
Exploits68References4
Positive Technologies
Positive Technologies
added 2024/08/07 12:0 a.m.6 views

PT-2024-5969

Name of the Vulnerable Software and Affected Versions OpenSSH versions prior to the fixed version Description A signal handler in sshd8 may call a logging function that is not async-signal-safe. The signal handler is invoked when a client does not authenticate within the LoginGraceTime seconds 12...

9.3CVSS8.9AI score0.99506EPSS
Exploits68References67
OSV
OSV
added 2024/07/02 11:8 a.m.4 views

OESA-2024-1782 openssh security update

OpenSSH is the premier connectivity tool for remote login with the SSH protocol. \ It encrypts all traffic to eliminate eavesdropping, connection hijacking, and \ other attacks. In addition, OpenSSH provides a large suite of secure tunneling \ capabilities, several authentication methods, and...

8.1CVSS7AI score0.99506EPSS
Exploits68References2
OSV
OSV
added 2024/07/02 11:8 a.m.3 views

OESA-2024-1784 openssh security update

OpenSSH is the premier connectivity tool for remote login with the SSH protocol. \ It encrypts all traffic to eliminate eavesdropping, connection hijacking, and \ other attacks. In addition, OpenSSH provides a large suite of secure tunneling \ capabilities, several authentication methods, and...

8.1CVSS7AI score0.99506EPSS
Exploits68References2
Amazon
Amazon
added 2024/07/01 12:0 a.m.3 views

Important: openssh

Issue Overview: A signal handler race condition was found in OpenSSH's server sshd, where a client does not authenticate within LoginGraceTime seconds 120 by default, 600 in old OpenSSH versions, then sshd's SIGALRM handler is called asynchronously. However, this signal handler calls various...

8.1CVSS6.7AI score0.99506EPSS
Exploits68
Snyk
Snyk
added 2024/06/30 9:0 p.m.89 views

Race Condition

Overview Affected versions of this package are vulnerable to Race Condition in OpenSSH's server sshd due to a signal handler race condition when a client does not authenticate within LoginGraceTime seconds 120 by default, 600 in old OpenSSH versions. An attacker can execute arbitrary code as root...

9.2CVSS8.1AI score0.99506EPSS
Exploits68References2
SUSE CVE
SUSE CVE
added 2023/02/15 6:19 a.m.3 views

SUSE CVE-2004-2069

sshd.c in OpenSSH 3.6.1p2 and 3.7.1p2 and possibly other versions, when using privilege separation, does not properly signal the non-privileged process when a session has been terminated after exceeding the LoginGraceTime setting, which leaves the connection open and allows remote attackers to...

5CVSS8.2AI score0.03366EPSS
Exploits0References3
OSV
OSV
added 2004/12/31 5:0 a.m.2 views

DEBIAN-CVE-2004-2069

sshd.c in OpenSSH 3.6.1p2 and 3.7.1p2 and possibly other versions, when using privilege separation, does not properly signal the non-privileged process when a session has been terminated after exceeding the LoginGraceTime setting, which leaves the connection open and allows remote attackers to...

5CVSS7.9AI score0.03366EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2004/12/31 12:0 a.m.9 views

PT-2004-2965 · Openbsd +2 · Openssh +2

Name of the Vulnerable Software and Affected Versions: OpenSSH versions 3.6.1p2 and 3.7.1p2 Description: The issue occurs in the sshd.c component of OpenSSH when using privilege separation. It does not properly signal the non-privileged process when a session has been terminated after exceeding t...

10CVSS7.7AI score0.99506EPSS
Exploits207References361
Rows per page
Query Builder