Lucene search
K

5 matches found

SUSE CVE
SUSE CVE
added 2023/02/15 5:15 a.m.1 views

SUSE CVE-2015-6564

Use-after-free vulnerability in the mmanswerpamfreectx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITORREQPAMFREECTX request...

6.9CVSS7.1AI score0.00599EPSS
Exploits0References18
RedHat Linux
RedHat Linux
added 2022/04/19 10:22 a.m.4 views

ceph: Unauthorized global_id reuse in cephx

An authentication flaw was found in ceph. When the monitor handles CEPHXGETAUTHSESSIONKEY requests, it doesn't sanitize otherkeys, allowing key reuse. An attacker who can request a globalid can exploit the ability of any user to request a globalid previously associated with another user, as ceph...

7.2CVSS7.2AI score0.0211EPSS
Exploits0References4
OSV
OSV
added 2015/08/24 1:59 a.m.4 views

UBUNTU-CVE-2015-6564

Use-after-free vulnerability in the mmanswerpamfreectx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITORREQPAMFREECTX request...

7CVSS6.7AI score0.00599EPSS
Exploits0References10
OSV
OSV
added 2015/08/24 1:59 a.m.3 views

DEBIAN-CVE-2015-6563

The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITORREQPAMINITCTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafte...

6.4CVSS8.1AI score0.00378EPSS
Exploits0References1
Positive Technologies
Positive Technologies
added 2015/08/14 12:0 a.m.7 views

PT-2015-3448 · Openssh +5 · Openssh +5

Name of the Vulnerable Software and Affected Versions: OpenSSH versions prior to 7.0 Description: The issue allows local users to conduct impersonation attacks by leveraging any SSH login access in conjunction with control of the sshd uid to send a crafted MONITOR REQ PWNAM request. This is relat...

10CVSS7.7AI score0.9986EPSS
Exploits208References414
Rows per page
Query Builder