Lucene search
K

44 matches found

Tenable Nessus
Tenable Nessus
added 2026/01/20 12:0 a.m.4 views

MiracleLinux 7 : libssh2-1.8.0-4.el7 (AXSA:2020-562:01)

The remote MiracleLinux 7 host has a package installed that is affected by a vulnerability as referenced in the AXSA:2020-562:01 advisory. libssh2: integer overflow in SSHMSGDISCONNECT logic in packet.c CVE-2019-17498 Tenable has extracted the preceding description block directly from the...

8.1CVSS8.4AI score0.03793EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2025/11/13 12:0 a.m.5 views

Siemens SIMATIC S7-1500 Integer Overflow or Wraparound (CVE-2019-17498)

In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary out-of-bounds offset for a subsequent memory read. A crafted SSH server may be able to disclose sensitive information or cause a...

8.1CVSS6.9AI score0.03793EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.12 views

Linux Distros Unpatched Vulnerability : CVE-2019-17498

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an...

8.1CVSS6.7AI score0.03793EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2023/10/23 12:0 a.m.28 views

Ubuntu 16.04 ESM : libssh2 vulnerabilities (USN-5308-1)

The remote Ubuntu 16.04 ESM host has packages installed that are affected by multiple vulnerabilities as referenced in the USN-5308-1 advisory. It was discovered that libssh2 mishandled certain input. If libssh2 were used to connect to a malicious or compromised SSH server, a remote,...

9.3CVSS8.2AI score0.11659EPSS
Exploits2References12
Debian
Debian
added 2023/09/08 11:25 a.m.45 views

[SECURITY] [DLA 3559-1] libssh2 security update

Debian LTS Advisory DLA-3559-1 [email protected] https://www.debian.org/lts/security/ Guilhem Moulin September 08, 2023 https://wiki.debian.org/LTS Package : libssh2 Version : 1.8.0-2.1+deb10u1 CVE ID : CVE-2019-13115 CVE-2019-17498 CVE-2020-22218 Debian Bug : 932329 943562...

8.1CVSS6.7AI score0.11659EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2023/09/07 12:0 a.m.16 views

Oracle Linux 7 : libssh2 (ELSA-2020-3915)

The remote Oracle Linux 7 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2020-3915 advisory. - fix integer overflow in SSHMSGDISCONNECT logic CVE-2019-17498 - fix integer overflow in keyboard interactive handling that allows out-of-bounds writes...

9.3CVSS7.5AI score0.09219EPSS
Exploits1References2
OSV
OSV
added 2023/08/31 12:16 p.m.1 views

BELL-CVE-2019-17498 CVE-2019-17498 does not affect BellSoft software

Bulletin has no description...

8.1CVSS7.2AI score0.03793EPSS
Exploits1References1
OpenVAS
OpenVAS
added 2023/01/27 12:0 a.m.25 views

Ubuntu: Security Advisory (USN-5308-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2023 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS9.2AI score0.11659EPSS
Exploits2References2
CBLMariner
CBLMariner
added 2022/04/09 6:51 a.m.16 views

CVE-2019-17498 affecting package libssh2 for versions less than 1.9.0-1

CVE-2019-17498 affecting package libssh2 for versions less than 1.9.0-1. A patched version of the package is available...

8.1CVSS8AI score0.03793EPSS
Exploits1
Debian
Debian
added 2021/12/17 10:56 p.m.66 views

[SECURITY] [DLA 2848-1] libssh2 security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-2848-1 [email protected] https://www.debian.org/lts/security/ Anton Gladky December 17, 2021 https://wiki.debian.org/LTS -...

8.1CVSS9.1AI score0.11659EPSS
Exploits2
Tenable Nessus
Tenable Nessus
added 2021/10/27 12:0 a.m.30 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : libssh2 Vulnerability (NS-SA-2021-0173)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has libssh2 packages installed that are affected by a vulnerability: - In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an...

8.1CVSS6.8AI score0.03793EPSS
Exploits1References3
Tenable Nessus
Tenable Nessus
added 2021/06/10 12:0 a.m.25 views

SUSE SLES11 Security Update : libssh2_org (SUSE-SU-2019:14206-1)

The remote SUSE Linux SLES11 host has a package installed that is affected by a vulnerability as referenced in the SUSE- SU-2019:14206-1 advisory. - In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to...

8.1CVSS6.8AI score0.03793EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2019:14206-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.03793EPSS
Exploits1References4
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.19 views

SUSE: Security Advisory (SUSE-SU-2019:2936-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

8.1CVSS7.2AI score0.03793EPSS
Exploits1References3
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.17 views

SUSE: Security Advisory (SUSE-SU-2020:3551-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

9.3CVSS8AI score0.09219EPSS
Exploits1References5
IBM Security Bulletins
IBM Security Bulletins
added 2021/01/20 12:27 p.m.29 views

Security Bulletin: IBM MQ Appliance is affected by a libssh2 vulnerability (CVE-2019-17498)

Summary IBM MQ Appliance has resolved a libssh2 vulnerability. Vulnerability Details CVEID: CVE-2019-17498 DESCRIPTION: libssh2 is vulnerable to a denial of service, caused by an out-of-bounds read when connecting to a malicious SSH server that sends a disconnect message. A remote attacker could...

8.1CVSS1.2AI score0.03793EPSS
Exploits1Affected Software1
Tenable Nessus
Tenable Nessus
added 2020/10/28 12:0 a.m.34 views

Amazon Linux 2 : libssh2 (ALAS-2020-1531)

The version of libssh2 installed on the remote host is prior to 1.4.3-12. It is, therefore, affected by a vulnerability as referenced in the ALAS2-2020-1531 advisory. In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling...

8.1CVSS6.9AI score0.03793EPSS
Exploits1References3
Amazon
Amazon
added 2020/10/27 12:0 a.m.37 views

Medium: libssh2

Issue Overview: In libssh2 v1.9.0 and earlier versions, the SSHMSGDISCONNECT logic in packet.c has an integer overflow in a bounds check, enabling an attacker to specify an arbitrary out-of-bounds offset for a subsequent memory read. A crafted SSH server may be able to disclose sensitive...

8.1CVSS7.8AI score0.03793EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2020/10/21 12:0 a.m.26 views

Scientific Linux Security Update : libssh2 on SL7.x x86_64 (20201001)

Security Fixes : - libssh2: integer overflow in SSHMSGDISCONNECT logic in packet.c CVE-2019-17498 C Tenable Network Security, Inc. The descriptive text is C Scientific Linux. include'compat.inc'; if description scriptid141667; scriptversion"1.3";...

8.1CVSS6.9AI score0.03793EPSS
Exploits1References2
Cent OS
Cent OS
added 2020/10/20 6:24 p.m.584 views

libssh2 security update

CentOS Errata and Security Advisory CESA-2020:3915 An update for libssh2 is now available for Red Hat Enterprise Linux 7. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity...

8.1CVSS6.7AI score0.03793EPSS
Exploits1References7
Rows per page
Query Builder