CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

CNVD•added 2015/09/22 12:0 a.m.•4 views

Cisco Secure Access Control Server SSH Login Denial of Service Vulnerability

The Cisco Secure Access Control System is the access policy control platform. A security vulnerability exists within the Secure Shell SSH of the Cisco Secure Access Control Server ACS, which can be exploited by a remote attacker to cause an unexpected termination of the SSH screen process,...

4CVSS6.9AI score0.0159EPSS

Exploit DB•added 2015/08/29 12:0 a.m.•39 views

Sysax Multi Server 6.40 - SSH Component Denial of Service

''' Exploit title: Sysax Multi Server 6.40 ssh component denial of service vulnerability Date: 29-8-2015 Vendor homepage: http://www.sysax.com Software Link: http://www.sysax.com/download/sysaxservsetup.msi Version: 6.40 Author: 3unnym00n Details: ---------------------------------------------- by...

7AI score

CNVD•added 2015/08/25 12:0 a.m.•4 views

OpenSSH sshd monitor.c file memory misreference vulnerability

OpenSSH OpenBSD Secure Shell on non-OpenBSD platforms is a set of connectivity tools for secure access to remote computers running on non-OpenBSD BSD-based UNIX implementations platforms maintained by the OpenBSD Project. A memory misreference vulnerability exists in the 'mmanswerpamfreectx'...

6.9CVSS8AI score0.00604EPSS

BDU FSTEC•added 2015/08/25 12:0 a.m.•4 views

The vulnerability of the microprogramming software of Sierra Wireless’ wireless gateways—AirLink GX450, AirLink ES440, AirLink GX440, and AirLink LS300—allows a hacker to gain access to the device with administrator privileges.

The vulnerability of the microprogramming software in Sierra Wireless’ wireless gateways—AirLink GX450, AirLink ES440, AirLink GX440, and AirLink LS300—is related to the presence of a pre-installed user with administrator privileges. Exploiting this vulnerability allows a malicious actor to gain...

10CVSS5.5AI score0.02257EPSS

Exploits0References4Affected Software1

Positive Technologies•added 2015/08/23 12:0 a.m.•6 views

PT-2015-5967 · Mobile Devices · Mobile Devices C4 Obd-Ii Dongle

Name of the Vulnerable Software and Affected Versions: Mobile Devices aka MDI C4 OBD-II dongles versions 2.x through 3.4.x Description: The issue allows remote attackers to gain access by leveraging knowledge of a private key from another installation, as the SSH private keys stored are the same...

9CVSS6.8AI score0.02563EPSS

Exploits0References3

Fedora•added 2015/08/19 8:15 a.m.•54 views

[SECURITY] Fedora 22 Update: openssh-6.9p1-5.fc22

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

CNVD•added 2015/08/14 12:0 a.m.•1 views

OpenSSH PAM Support Remote Code Execution Vulnerability

OpenSSH OpenBSD Secure Shell is a set of connection tools for secure access to remote computers maintained by the OpenBSD Project Group. The tools are an open source implementation of the SSH protocol and support encryption of all transmissions, effectively blocking eavesdropping, connection...

8.4AI score

CNVD•added 2015/08/04 12:0 a.m.•13 views

OpenSSH sshd vulnerability

8.5CVSS7.9AI score0.09302EPSS

Exploits1References1

Fedora•added 2015/08/03 4:31 a.m.•50 views

[SECURITY] Fedora 21 Update: openssh-6.6.1p1-15.fc21

OSV•added 2015/08/03 1:59 a.m.•1 views

DEBIAN-CVE-2015-5352

The x11openhelper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time...

4.3CVSS6.3AI score0.05445EPSS

Vulnrichment•added 2015/08/03 12:0 a.m.•5 views

CVE-2015-5600

The kbdintnextdevice function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service CPU consumptio...

6.8AI score0.09302EPSS

Exploits1References33

Fedora•added 2015/07/31 7:53 a.m.•68 views

[SECURITY] Fedora 22 Update: openssh-6.9p1-4.fc22

Fedora•added 2015/07/30 1:56 p.m.•59 views

[SECURITY] Fedora 22 Update: openssh-6.9p1-3.fc22

Fedora•added 2015/07/10 7:18 p.m.•43 views

[SECURITY] Fedora 22 Update: openssh-6.9p1-1.fc22

4.3CVSS2AI score0.05445EPSS

Fedora•added 2015/07/10 7:9 p.m.•42 views

[SECURITY] Fedora 21 Update: openssh-6.6.1p1-13.fc21

4.3CVSS2AI score0.05445EPSS

CNVD•added 2015/06/29 12:0 a.m.•5 views

Cisco Virtual WSA/ESA/SMA remote-support feature default SSH host key vulnerability

The Cisco Web Security Virtual Appliance WSAv, Email Security Virtual Appliance ESAv, and Security Management Virtual Appliance SMAv are products of the Cisco Corporation. Cisco WSAv is a software version of the Web Security Appliance WSA, ESAv is a software version of the Email Security Applianc...

4.3CVSS7.1AI score0.02241EPSS

The Hacker News•added 2015/06/02 9:18 p.m.•10 views

Microsoft Plans to Add Secure Shell (SSH) to Windows

Until now Unix and Linux system administrators have to download a third-party SSH client software like Putty on their Windows machines to securely manage their machines and servers remotely through Secure Shell protocol or Shell Session better known as SSH. This might have always been an awkward...

6.6AI score