Lucene search
K

31 matches found

Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.13 views

Linux Distros Unpatched Vulnerability : CVE-2014-2532

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshdconfig, which allows remote attackers to bypass intended environment...

5.8CVSS6.8AI score0.04751EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.17 views

Mageia: Security Advisory (MGASA-2014-0143)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.8CVSS5.5AI score0.04751EPSS
Exploits1References4
IBM Security Bulletins
IBM Security Bulletins
added 2021/06/25 4:46 p.m.34 views

Security Bulletin: Vulnerabilities in Open Secure Shell for GPFS V3.5 on Windows (CVE-2014-2653, CVE-2014-2532)

Summary Security vulnerabilities have been identified in the level of OpenSSH that is currently shipped with GPFS V3.5.0.11, or later, on Windows. The current level of OpenSSH could allow a remote attacker to bypass security restrictions caused by: - CVE-2014-2653 an error in the SSH client when...

5.8CVSS6AI score0.04751EPSS
Exploits2Affected Software1
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.24 views

SUSE: Security Advisory (SUSE-SU-2014:0818-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.6AI score0.04751EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.70 views

NewStart CGSL CORE 5.04 / MAIN 5.04 : openssh Multiple Vulnerabilities (NS-SA-2019-0036)

The remote NewStart CGSL host, running version CORE 5.04 / MAIN 5.04, has openssh packages installed that are affected by multiple vulnerabilities: - scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are expanded...

9.3CVSS7.9AI score0.44963EPSS
Exploits22References9
IBM Security Bulletins
IBM Security Bulletins
added 2019/01/31 1:35 a.m.56 views

Security Bulletin: Security vulnerabilities in Open SSL, OpenSSH and curl affect the Integrated Management Module II (IMM2)

Summary Security vulnerabilities in Open SSL, OpenSSH and curl affect the Integrated Management Module II IMM2. Vulnerability Details Abstract Security vulnerabilities in Open SSL, OpenSSH and curl affect the Integrated Management Module II IMM2. Vulnerability Details CVE-ID: CVE-2014-2653...

6.8CVSS0.8AI score0.51436EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2016/06/15 12:0 a.m.36 views

F5 Networks BIG-IP : OpenSSH vulnerabilities (K15780)

CVE-2014-2653 The verifyhostkey function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate. CVE-2014-2532 sshd in OpenSSH before 6.6 does not properly support wildcards on...

6.5CVSS6.6AI score0.04751EPSS
Exploits2References3
OpenVAS
OpenVAS
added 2015/10/06 12:0 a.m.26 views

Oracle: Security Advisory (ELSA-2014-1552)

The remote host is missing an update for the SPDX-FileCopyrightText: 2015 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.9AI score0.04751EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2015/03/30 12:0 a.m.34 views

Mandriva Linux Security Advisory : openssh (MDVSA-2015:095)

Updated openssh packages fix security vulnerabilities : sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshdconfig, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character CVE-2014-2532...

6.5CVSS6.6AI score0.04751EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2014/11/12 12:0 a.m.71 views

CentOS 6 : openssh (CESA-2014:1552)

Updated openssh packages that fix two security issues, several bugs, and add various enhancements are now available for Red Hat Enterprise Linux 6. Red Hat Product Security has rated this update as having Moderate security impact. Common Vulnerability Scoring System CVSS base scores, which give...

6.5CVSS6.5AI score0.04751EPSS
Exploits2References3
Tenable Nessus
Tenable Nessus
added 2014/10/17 12:0 a.m.41 views

Oracle Linux 6 : openssh (ELSA-2014-1552)

The remote Oracle Linux 6 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2014-1552 advisory. - prevent a server from skipping SSHFP lookup 1081338 CVE-2014-2653 - ignore environment variables with embedded '=' or '\0' characters CVE-2014-2532...

6.5CVSS6.7AI score0.04751EPSS
Exploits2References3
Oracle linux
Oracle linux
added 2014/10/15 12:0 a.m.97 views

openssh security, bug fix, and enhancement update

5.3p1-104 - ignore SIGXFSZ in postauth monitor child 1133906 5.3p1-103 - don't try to generate DSA keys in the init script in FIPS mode 1118735 5.3p1-102 - ignore SIGPIPE in ssh-keyscan 1108836 5.3p1-101 - ssh-add: fix fatal exit when removing card 1042519 5.3p1-100 - fix race in backported...

5.8CVSS0.9AI score0.04751EPSS
Exploits2
Amazon
Amazon
added 2014/07/09 12:0 a.m.44 views

Medium: openssh

Issue Overview: sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshdconfig, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character. The verifyhostkey function in sshconnect.c in the...

5.8CVSS7.1AI score0.04751EPSS
Exploits2
IBM AIX
IBM AIX
added 2014/06/17 4:7 a.m.262 views

AIX OpenSSH Vulnerability

-----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 IBM SECURITY ADVISORY First Issued: Tue Jun 17 04:07:12 CDT 2014 The most recent version of this document is available here: http://aix.software.ibm.com/aix/efixes/security/opensshadvisory4.asc...

6.5CVSS6.1AI score0.04751EPSS
Exploits2
OpenVAS
OpenVAS
added 2014/06/17 12:0 a.m.23 views

Fedora Update for openssh FEDORA-2014-6569

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.7AI score0.04751EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2014/05/26 12:0 a.m.28 views

Fedora Update for openssh FEDORA-2014-6380

The remote host is missing an update for the SPDX-FileCopyrightText: 2014 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS5.7AI score0.04751EPSS
Exploits2References2
Tenable Nessus
Tenable Nessus
added 2014/05/12 12:0 a.m.198 views

GLSA-201405-06 : OpenSSH: Multiple vulnerabilities

The remote host is affected by the vulnerability described in GLSA-201405-06 OpenSSH: Multiple vulnerabilities Multiple vulnerabilities have been discovered in OpenSSH. Please review the CVE identifiers referenced below for details. Impact : A remote attacker could execute arbitrary code, cause a...

9.8CVSS7.1AI score0.1651EPSS
Exploits7References8
Debian
Debian
added 2014/04/30 10:16 a.m.74 views

[BSA-095] Security Update for openssh

Colin Watson uploaded new packages for openssh which fixed the following security problems: CVE-2014-2532 DSA-2894-1 Jann Horn discovered that OpenSSH incorrectly handled wildcards in AcceptEnv lines. A remote attacker could use this issue to trick OpenSSH into accepting any environment variable...

6.5CVSS6.4AI score0.04751EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2014/04/10 12:0 a.m.35 views

Mandriva Linux Security Advisory : openssh (MDVSA-2014:068)

Updated openssh packages fixes security vulnerabilities : sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshdconfig, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character...

6.5CVSS6.6AI score0.04751EPSS
Exploits2References4
Tenable Nessus
Tenable Nessus
added 2014/04/07 12:0 a.m.67 views

Debian DSA-2894-1 : openssh - security update

Two vulnerabilities were discovered in OpenSSH, an implementation of the SSH protocol suite. The Common Vulnerabilities and Exposures project identifies the following problems : - CVE-2014-2532 Jann Horn discovered that OpenSSH incorrectly handled wildcards in AcceptEnv lines. A remote attacker...

6.5CVSS6.6AI score0.04751EPSS
Exploits2References8
Rows per page
Query Builder