CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

OSV•added 2026/04/09 9:32 p.m.•2 views

JLSEC-2026-64

ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an agent to an attacker-controlled host...

7.1CVSS7.1AI score0.00256EPSS

Exploits1References18

OSV•added 2022/11/11 11:4 a.m.•2 views

OESA-2022-2083 openssh security update

OpenSSH is the premier connectivity tool for remote login with the SSH protocol. It encrypts all traffic to eliminate eavesdropping, connection hijacking, and other attacks. In addition, OpenSSH provides a large suite of secure tunneling capabilities, several authentication methods, and...

7.1CVSS7.2AI score0.00256EPSS

Exploits1References2

OSV•added 2021/03/05 9:15 p.m.•2 views

DEBIAN-CVE-2021-28041

7.1CVSS7.3AI score0.00256EPSS

Exploits1References1

UbuntuCve•added 2021/03/05 9:15 p.m.•321 views

CVE-2021-28041

7.1CVSS7AI score0.00256EPSS

Exploits1References5

AlpineLinux•added 2021/03/05 7:7 p.m.•91 views

CVE-2021-28041

7.1CVSS7.1AI score0.00256EPSS

Exploits1

CVE•added 2021/03/05 7:7 p.m.•12848 views

CVE-2021-28041

The CVE refers to OpenSSH ssh-agent before 8.5, where a double-free vulnerability may be triggered in rare scenarios (unconstrained agent-socket access on legacy OS or forwarding to an attacker-controlled host). Affected component: ssh-agent in OpenSSH prior to 8.5. Root cause: double free descri...

7.1CVSS6.8AI score0.00256EPSS

Exploits1References9Affected Software1