Lucene search
K

74 matches found

OpenVAS
OpenVAS
added 2024/04/22 12:0 a.m.46 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-1552)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.9378EPSS
Exploits11References2
OpenVAS
OpenVAS
added 2024/04/22 12:0 a.m.65 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-1533)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.9378EPSS
Exploits11References2
OSV
OSV
added 2024/04/19 11:7 a.m.1 views

OESA-2024-1461 libssh2 security update

libssh2 is a library implementing the SSH2 protocol as defined by Internet Drafts: SECSH-TRANS22, SECSH-USERAUTH25, SECSH-CONNECTION23, SECSH-ARCH20, SECSH-FILEXFER06, SECSH-DHGEX04, and SECSH-NUMBERS10. Security Fixes: The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH...

5.9CVSS8.1AI score0.9378EPSS
Exploits4References2
RedHat Linux
RedHat Linux
added 2024/04/16 5:26 p.m.55 views

Moderate: Red Hat Security Advisory: OpenShift API for Data Protection (OADP) 1.3.1 security and bug fix update

OpenShift API for Data Protection OADP 1.3.1 is now available. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

7.5CVSS7.1AI score0.9378EPSS
Exploits4References25
OSV
OSV
added 2024/04/12 11:7 a.m.4 views

OESA-2024-1408 cri-o security update

Open Container Initiative-based implementation of Kubernetes Container Runtime Interface. Security Fixes: A malicious HTTP/2 client which rapidly creates requests and immediately resets them can cause excessive server resource consumption. While the total number of requests is bounded by the...

7.5CVSS6.8AI score0.9378EPSS
Exploits4References3
RedHat Linux
RedHat Linux
added 2024/04/04 3:23 p.m.2 views

ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...

5.9CVSS6.7AI score0.9378EPSS
Exploits4References6
RedHat Linux
RedHat Linux
added 2024/03/28 5:31 a.m.48 views

Critical: Red Hat Security Advisory: Errata Advisory for Red Hat OpenShift Builds 1.0.1

An update is now available for Red Hat OpenShift Builds 1.0. Red Hat Product Security has rated this update as having a security impact of Critical. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link...

9.8CVSS7AI score0.9378EPSS
Exploits4References4
OSV
OSV
added 2024/03/26 6:3 p.m.11 views

CLSA-2024-1711475067 libssh: Fix of 2 CVEs

CVE-2023-1667: fix possible NULL-pointer dereference during re-keying with algorithm guessing - CVE-2023-48795: fix the prefix truncation attack on Binary Packet Protocol...

6.5CVSS7AI score0.9378EPSS
Exploits4References1
OpenVAS
OpenVAS
added 2024/03/13 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for proftpd (EulerOS-SA-2024-1345)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.9378EPSS
Exploits5References2
Tenable Nessus
Tenable Nessus
added 2024/03/07 12:0 a.m.49 views

Jenkins plugins Multiple Vulnerabilities (2024-03-06)

According to their self-reported version numbers, the version of Jenkins plugins running on the remote web server are affected by multiple vulnerabilities: - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypa...

8.8CVSS7AI score0.9378EPSS
Exploits4References18
RedHat Linux
RedHat Linux
added 2024/03/05 6:22 p.m.11 views

Moderate: Red Hat Bug Fix Advisory: libssh bug fix update

An update for libssh is now available for Red Hat Enterprise Linux 9. libssh is a library which implements the SSH protocol. It can be used to implement client and server applications. Bug Fixes: libssh: ssh: Prefix truncation attack on Binary Packet Protocol BPP JIRA:RHEL-20939...

5.9CVSS7AI score0.9378EPSS
Exploits4
AlmaLinux
AlmaLinux
added 2024/03/05 12:0 a.m.163 views

Moderate: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: ssh: Prefix truncation attack on Binary Packet Protocol BPP CVE-2023-48795 openssh: potential...

6.5CVSS7.9AI score0.9378EPSS
Exploits11References6
AlmaLinux
AlmaLinux
added 2024/03/05 12:0 a.m.60 views

Moderate: buildah security update

The buildah package provides a tool for facilitating building OCI container images. Among other things, buildah enables you to: Create a working container, either from scratch or using an image as a starting point; Create an image, either from a working container or using the instructions in a...

5.9CVSS7.3AI score0.9378EPSS
Exploits4References4
RedHat Linux
RedHat Linux
added 2024/02/27 10:34 p.m.54 views

Important: Red Hat Security Advisory: OpenShift Container Platform 4.15.0 packages and security update

Red Hat OpenShift Container Platform release 4.15.0 is now available with updates to packages and images that fix several bugs and add enhancements. This release includes a security update for Red Hat OpenShift Container Platform 4.15. Red Hat Product Security has rated this update as having a...

7.5CVSS7.1AI score0.99999EPSS
Exploits23References11
RedHat Linux
RedHat Linux
added 2024/02/27 10:34 p.m.5 views

ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...

5.9CVSS6.6AI score0.9378EPSS
Exploits4References6
Rockylinux
Rockylinux
added 2024/02/12 8:17 p.m.347 views

openssh security update

An update is available for openssh. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list OpenSSH is an SSH protocol implementation supported by a number of Linux, UNI...

6.5CVSS6.9AI score0.9378EPSS
Exploits11
Rockylinux
Rockylinux
added 2024/02/12 8:17 p.m.55 views

libssh security update

An update is available for libssh. This update affects Rocky Linux 8. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE list libssh is a library which implements the SSH protocol. It can be used to...

5.9CVSS6.8AI score0.9378EPSS
Exploits4
Tenable Nessus
Tenable Nessus
added 2024/02/06 12:0 a.m.39 views

SUSE SLED15: bouncycastle / bouncycastle-javadoc / bouncycastle-jmail / etc (SUSE-SU-2024:0327-1)

The remote SUSE Linux SLED15 / SLEDSAP15 / SLES15 / SLESSAP15 / openSUSE 15 host has packages installed that are affected by a vulnerability as referenced in the SUSE-SU-2024:0327-1 advisory. - Updated jsch to version 0.2.15: - CVE-2023-48795: Fixed a prefix truncation issue that could lead to...

5.9CVSS7.1AI score0.9378EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2024/02/01 12:0 a.m.159 views

Oracle Linux 8 : openssh (ELSA-2024-0606)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2024-0606 advisory. - Forbid shell metasymbols in username/hostname Resolves: CVE-2023-51385 Tenable has extracted the preceding description block directly from the Oracle...

6.5CVSS7.1AI score0.9378EPSS
Exploits11References3
RedHat Linux
RedHat Linux
added 2024/01/31 8:36 a.m.2 views

ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

A flaw was found in the SSH channel integrity. By manipulating sequence numbers during the handshake, an attacker can remove the initial messages on the secure channel without causing a MAC failure. For example, an attacker could disable the ping extension and thus disable the new countermeasure ...

5.9CVSS6.6AI score0.9378EPSS
Exploits4References6
Rows per page
Query Builder