Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

25 matches found

EUVD
EUVDadded 2025/10/07 12:30 a.m.1 views

EUVD-2019-15676

Malware in sbrugna...

6.8CVSS6.6AI score0.09738EPSS
Exploits0References20
OSV
OSVadded 2025/04/25 7:27 a.m.8 views

BIT-VALKEY-2025-21605 Redis DoS Vulnerability due to unlimited growth of output buffers abused by unauthenticated client

Redis is an open source, in-memory database that persists on disk. In versions starting at 2.6 and prior to 7.4.3, An unauthenticated client can cause unlimited growth of output buffers, until the server runs out of memory or is killed. By default, the Redis configuration does not limit the outpu...

7.5CVSS7.9AI score0.00498EPSS
Exploits0References7
Broadcom
Broadcomadded 2024/04/16 12:0 a.m.35 views

Missing character encoding in progress display allows for spoofing of scp client output (CVE-2019-6109)

An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle attacker can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This...

6.8CVSS6.9AI score0.09738EPSS
Exploits0
Tenable Nessus
Tenable Nessusadded 2023/09/07 12:0 a.m.52 views

Oracle Linux 8 : openssh (ELSA-2019-3702)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2019-3702 advisory. 8.0p1-3 + 0.10.3-7 - Fix typos in manual pages 1668325 - Use the upstream support for PKCS8 PEM files alongside with the legacy PEM files 1712436 -...

6.8CVSS7.4AI score0.54213EPSS
Exploits9References4
F5 Networks
F5 Networksadded 2023/02/21 6:53 p.m.476 views

K42531048: OpenSSH vulnerability CVE-2019-6110

Security Advisory Description In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server or Man-in-The-Middle attacker can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred. CVE-2019-6110...

6.8CVSS7.2AI score0.57569EPSS
Exploits8Affected Software17
F5 Networks
F5 Networksadded 2023/02/21 6:34 p.m.70 views

K12252011: OpenSSH vulnerability CVE-2019-6109

Security Advisory Description An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle attacker can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional...

6.8CVSS7AI score0.09738EPSS
Exploits0Affected Software15
SUSE CVE
SUSE CVEadded 2023/02/15 4:16 a.m.1 views

SUSE CVE-2019-6110

In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server or Man-in-The-Middle attacker can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred...

4.6CVSS8.3AI score0.57569EPSS
Exploits8References16
OpenVAS
OpenVASadded 2020/04/16 12:0 a.m.25 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2020-1419)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2020 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.9AI score0.54213EPSS
Exploits10References2
Tenable Nessus
Tenable Nessusadded 2019/11/12 12:0 a.m.34 views

EulerOS 2.0 SP8 : openssh (EulerOS-SA-2019-2113)

According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle...

6.8CVSS7.2AI score0.54213EPSS
Exploits9References3
Tenable Nessus
Tenable Nessusadded 2019/08/12 12:0 a.m.64 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : openssh Multiple Vulnerabilities (NS-SA-2019-0060)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has openssh packages installed that are affected by multiple vulnerabilities: - In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename...

6.8CVSS7.3AI score0.57569EPSS
Exploits10References5
Tenable Nessus
Tenable Nessusadded 2019/05/30 12:0 a.m.38 views

EulerOS Virtualization for ARM 64 3.0.2.0 : openssh (EulerOS-SA-2019-1630)

According to the versions of the openssh packages installed, the EulerOS Virtualization for ARM 64 installation on the remote host is affected by the following vulnerabilities : - An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server...

6.8CVSS7.2AI score0.54213EPSS
Exploits9References3
Tenable Nessus
Tenable Nessusadded 2019/02/08 12:0 a.m.77 views

Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS : OpenSSH vulnerabilities (USN-3885-1)

The remote Ubuntu 14.04 LTS / 16.04 LTS / 18.04 LTS host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-3885-1 advisory. Harry Sintonen discovered multiple issues in the OpenSSH scp utility. If a user or automated system were tricked into connecting ...

6.8CVSS7.3AI score0.54213EPSS
Exploits9References4
OSV
OSVadded 2019/02/07 6:50 p.m.0 views

USN-3885-1 openssh vulnerabilities

Harry Sintonen discovered multiple issues in the OpenSSH scp utility. If a user or automated system were tricked into connecting to an untrusted server, a remote attacker could possibly use these issues to write to arbitrary files, change directory permissions, and spoof client output...

6.8CVSS7AI score0.54213EPSS
Exploits9References4
Prion
Prionadded 2019/01/31 6:29 p.m.297 views

Design/Logic Flaw

In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server or Man-in-The-Middle attacker can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred...

4CVSS6.9AI score0.57569EPSS
Exploits8References7Affected Software4
Prion
Prionadded 2019/01/31 6:29 p.m.279 views

Design/Logic Flaw

An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle attacker can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This...

4CVSS6.4AI score0.09738EPSS
Exploits0References13Affected Software17
ATTACKERKB
ATTACKERKBadded 2019/01/31 12:0 a.m.360 views

CVE-2019-6109

An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle attacker can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This...

6.8CVSS2.1AI score0.09738EPSS
In wildExploits0References13
CVE
CVEadded 2019/01/31 12:0 a.m.5518 views

CVE-2019-6110

CVE-2019-6110 (OpenSSH SCP client) affects OpenSSH 7.9. The vulnerability arises from accepting and displaying arbitrary stderr output from the SCP server, allowing a malicious server or MITM to spoof SCP client output and potentially mask or override transferred files. Connected advisories confi...

6.8CVSS6.2AI score0.57569EPSS
In wildExploits8References7Affected Software2
AlpineLinux
AlpineLinuxadded 2019/01/31 12:0 a.m.33 views

CVE-2019-6109

An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle attacker can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This...

6.8CVSS7AI score0.09738EPSS
Exploits0
Positive Technologies
Positive Technologiesadded 2018/11/06 12:0 a.m.6 views

PT-2019-1441

Name of the Vulnerable Software and Affected Versions OpenSSH version 7.9 Description The issue allows a malicious server or Man-in-The-Middle attacker to manipulate the client output, for example, by using ANSI control codes to hide additional files being transferred. This is due to the acceptan...

10CVSS8.1AI score0.94395EPSS
Exploits256References451
Positive Technologies
Positive Technologiesadded 2018/11/06 12:0 a.m.6 views

PT-2019-1442 · Openssh +6 · Openssh +6

Name of the Vulnerable Software and Affected Versions: OpenSSH version 7.9 Description: The issue is related to insufficient access control in the OpenSSH utility, specifically in the refresh progress meter function. This can allow a remote attacker to disclose protected information or execute...

10CVSS7AI score0.90356EPSS
Exploits213References460
Rows per page
Query Builder