AZL-57488 CVE-2025-22869 affecting package kubevirt for versions less than 0.59.0-25

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...

AZL-57437 CVE-2025-22869 affecting package cert-manager for versions less than 1.11.2-20

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...

AZL-57347 CVE-2025-22869 affecting package cf-cli for versions less than 8.7.11-2

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...

AZL-57458 CVE-2025-22869 affecting package packer for versions less than 1.9.5-10

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...

DEBIAN-CVE-2025-22869

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...

UBUNTU-CVE-2025-22869

SSH servers which implement file transfer protocols are vulnerable to a denial of service attack from clients which complete the key exchange slowly, or not at all, causing pending content to be read into memory, but never transmitted...

Security Bulletin: This Power System update is being released to address CVE-2023-52881

Summary This affects the BMC's network transmission control protocol TCP interface which affects aspects of interfaces that use TCP including the BMC's secure shell SSH, HTTPS interfaces including the BMC's webserver, REST APIs, and ASMi web application, and event and subscriptions services. An...

AZL-57083 CVE-2025-26618 affecting package erlang for versions less than 26.2.5.9-1

Erlang is a programming language and runtime system for building massively scalable soft real-time systems with requirements on high availability. OTP is a set of Erlang libraries, which consists of the Erlang runtime system, a number of ready-to-use components mainly written in Erlang. Packet si...

CVE-2025-20158

A vulnerability in the debug shell of Cisco Video Phone 8875 and Cisco Desk Phone 9800 Series could allow an authenticated, local attacker to access sensitive information on an affected device. To exploit this vulnerability, the attacker must have valid administrative credentials with SSH access ...

PT-2025-7536 · Cisco · Cisco Desk Phone 9800 Series +1

Name of the Vulnerable Software and Affected Versions: Cisco Video Phone 8875 and Cisco Desk Phone 9800 Series affected versions not specified Description: A vulnerability in the debug shell of the affected devices could allow an authenticated, local attacker to access sensitive information on th...

CVE-2024-4282

Brocade SANnav OVA before SANnav 2.3.1b enables SHA1 deprecated setting for SSH for port 22...

Weak TLS Ciphers on Brocade SANnav OVA SSH port 22. (CVE-2024-4282)

Brocade SANnav OVA before SANnav 2.3.1b enables SHA1 deprecated setting for SSH for port 22. Detail The SSH protocol Secure Shell is a method for secure remote login from one computer to another. The target is using deprecated SHA1 cryptographic settings to communicate. IMPACT: vulnerable to...

SSH PrivX 安全漏洞

SSH PrivX is a scalable, cost-effective and highly automated privileged access management PAM solution from SSH. A security vulnerability exists in SSH PrivX versions 18.0 through 36.0 that stems from insufficient validation of public key signatures during a native SSH connection using a proxy po...

CVE-2024-26155

All versions of ETIC Telecom Remote Access Server RAS prior to 4.5.0 expose clear text credentials in the web portal. An attacker can access the ETIC RAS web portal and view the HTML code, which is configured to be hidden, thus allowing a connection to the ETIC RAS ssh server, which could enable ...

CVE-2024-48460

An issue in Eugeny Tabby 1.0.213 allows a remote attacker to obtain sensitive information via the server and sends the SSH username and password even when the host key verification fails...

Tabby 安全漏洞

Tabby Terminus is a highly configurable terminal emulator, SSH, and serial client for Windows 10, macOS, and Linux from the individual developer Eugene. A security vulnerability exists in Tabby version 1.0.213, which stems from a vulnerability that allows a remote attacker to obtain sensitive...

The vulnerability of the SSH configuration function on the NSv Gen7 SonicOS Cloud cloud platform allows a hacker to elevate privileges to the root level and execute arbitrary code.

The vulnerability of the SSH configuration function on the NSv Gen7 SonicOS Cloud cloud platform is related to insecure management of privileges. Exploiting this vulnerability could allow an attacker to elevate privileges to the root level and execute arbitrary code...

The vulnerability of the SSH configuration function on SonicOS operating systems allows a hacker to perform an SSRF attack.

The vulnerability of the SSH configuration function in SonicOS operating systems is related to insufficient validation of requests on the server side. Exploiting this vulnerability allows a malicious actor to perform an SSRF attack remotely...

Eaton X303 安全漏洞

The Eaton X303 is a programmable logic controller from Eaton Corporation USA. A security vulnerability exists in the Eaton X303 version 3.5.16 through 3.5.17 Build 712, which stems from a hard-coded root password in the firmware, and allows an attacker with network access to the XC-303 PLC to log...

The vulnerability of Sophos Firewall’s network firewalls (formerly known as Sophos XG Firewall) allows attackers to gain unauthorized access to protected information.

The vulnerability of Sophos Firewall’s network interfaces formerly known as Sophos XG Firewall is related to the use of weak credentials. Exploiting this vulnerability can allow an attacker, operating remotely, to gain unauthorized access to protected information via SSH...