Lucene search
K

62 matches found

OSV
OSV
added 2026/03/26 12:32 p.m.8 views

CLSA-2026-1774528369 openssh: Fix of 3 CVEs

CVE-2018-20685: fix a vulnerability scp client where a malicious server could bypass intended access restrictions and modify target directory permissions via crafted filenames - CVE-2019-6109: fix scp client where a malicious server could manipulate the client's progress display output due to...

6.8CVSS7AI score0.58204EPSS
Exploits9References1
Tenable Nessus
Tenable Nessus
added 2026/01/13 12:0 a.m.11 views

MiracleLinux 7 : openssh-7.4p1-23.0.3.0.3.el7.AXS7 (AXSA:2025-10789:04)

The remote MiracleLinux 7 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2025-10789:04 advisory. CVE-2018-20685: fix a vulnerability scp client where a malicious server could bypass intended access restrictions and modify target directory...

6.8CVSS7.4AI score0.58204EPSS
Exploits9References4
EUVD
EUVD
added 2025/10/03 8:7 p.m.6 views

EUVD-2023-39807

Malicious code in bioql PyPI...

5.3CVSS6.8AI score0.00411EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.22 views

Linux Distros Unpatched Vulnerability : CVE-2019-6111

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the...

5.9CVSS7AI score0.58204EPSS
Exploits9References3
Tenable Nessus
Tenable Nessus
added 2024/07/23 12:0 a.m.31 views

Photon OS 2.0: Openssh PHSA-2019-2.0-0159

An update of the openssh package has been released. %NASLMINLEVEL 80900 C Tenable, Inc. The descriptive text and package checks in this plugin were extracted from VMware Security Advisory PHSA-2019-2.0-0159. The text itself is copyright C VMware, Inc. include'compat.inc'; if description...

6.8CVSS7.5AI score0.58204EPSS
Exploits9References3
Tenable Nessus
Tenable Nessus
added 2024/05/11 12:0 a.m.225 views

RHEL 6 : openssh (Unpatched Vulnerability)

The remote Redhat Enterprise Linux 6 host has one or more packages installed that are affected by multiple vulnerabilities that have been acknowledged by the vendor but will not be patched. - openssh: loading of untrusted PKCS11 modules in ssh-agent CVE-2016-10009 - openssh: scp allows command...

8.4AI score0.58568EPSS
Exploits39References15
OSV
OSV
added 2023/08/31 12:15 p.m.8 views

BELL-CVE-2019-6111 CVE-2019-6111 does not affect BellSoft software

Bulletin has no description...

5.9CVSS7.3AI score0.58204EPSS
Exploits9References1
Tenable Nessus
Tenable Nessus
added 2023/03/24 12:0 a.m.72 views

Siemens SCALANCE X-200RNA Switch Devices Path Traversal (CVE-2019-6111)

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned only directory traversal attacks are prevented...

5.9CVSS7.1AI score0.58204EPSS
Exploits9References22
Tenable Nessus
Tenable Nessus
added 2022/11/08 12:0 a.m.108 views

F5 Networks BIG-IP : OpenSSH vulnerability (K21350967)

The version of F5 Networks BIG-IP installed on the remote host is prior to 15.1.10 / 16.1.4 / 17.1.1. It is, therefore, affected by a vulnerability as referenced in the K21350967 advisory. An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the serve...

5.9CVSS7.2AI score0.58204EPSS
Exploits9References2
Tenable Nessus
Tenable Nessus
added 2022/04/04 12:0 a.m.5325 views

OpenSSH < 8.0

According to its banner, the version of OpenSSH running on the remote host is prior to 8.0. It is, therefore, affected by the following vulnerabilities: - A permission bypass vulnerability due to improper directory name validation. An unauthenticated, remote attacker can exploit this, with a...

6.8CVSS7.3AI score0.58204EPSS
Exploits10References6
ALT Linux
ALT Linux
added 2022/03/23 12:0 a.m.130 views

Security fix for the ALT Linux 10 package openssh version 7.9p1-alt4.p10.1

7.9p1-alt4.p10.1 built March 23, 2022 Gleb Fotengauer-Malinovskiy in task 297014 --- March 22, 2022 Gleb Fotengauer-Malinovskiy - Backported upstream security fixes fixes CVE-2019-6111, CVE-2019-6109...

5.8CVSS2.8AI score0.58204EPSS
Exploits9
OpenVAS
OpenVAS
added 2022/01/28 12:0 a.m.25 views

Mageia: Security Advisory (MGASA-2019-0156)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.8AI score0.58204EPSS
Exploits9References4
Mageia
Mageia
added 2021/11/25 1:6 p.m.68 views

Updated rsh packages fix security vulnerability

In NetKit through 0.17, rcp.c in the rcp client allows remote rsh servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side. This is similar to CVE-2018-20685. CVE-2019-7282 An issu...

7.4CVSS3AI score0.02067EPSS
Exploits2References2
OpenVAS
OpenVAS
added 2021/11/22 12:0 a.m.38 views

OpenBSD OpenSSH <= 7.9 Multiple Vulnerabilities

OpenBSD OpenSSH is prone to multiple vulnerabilities. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

6.8CVSS6.6AI score0.58204EPSS
Exploits10References2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.35 views

SUSE: Security Advisory (SUSE-SU-2019:14030-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.2AI score0.58204EPSS
Exploits9References9
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.43 views

SUSE: Security Advisory (SUSE-SU-2019:13931-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.3AI score0.58204EPSS
Exploits10References7
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.33 views

SUSE: Security Advisory (SUSE-SU-2019:0496-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.8AI score0.58204EPSS
Exploits9References2
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.43 views

SUSE: Security Advisory (SUSE-SU-2019:0132-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.3AI score0.58204EPSS
Exploits10References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.41 views

SUSE: Security Advisory (SUSE-SU-2019:0125-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.3AI score0.58204EPSS
Exploits10References7
OpenVAS
OpenVAS
added 2021/04/19 12:0 a.m.32 views

SUSE: Security Advisory (SUSE-SU-2019:0941-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.2AI score0.58204EPSS
Exploits9References8
Rows per page
Query Builder