Lucene search
K

8 matches found

RedhatCVE
RedhatCVE
added 2025/05/15 4:34 p.m.23 views

CVE-2025-4658

Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification. As OPKSSH depends on the OpenPubkey library for authentication, this vulnerability in OpenPubkey also applies to OPKSSH versions prior to 0.5.0 and...

9.8CVSS6.8AI score0.00295EPSS
Exploits0References3
OSV
OSV
added 2025/05/13 9:34 p.m.6 views

GHSA-56WX-66PX-9J66 OPKSSH Vulnerable to Authentication Bypass

Impact Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification. As OPKSSH depends on the OpenPubkey library for authentication, this vulnerability in OpenPubkey also applies to OPKSSH versions prior to 0.5....

9.3CVSS6.3AI score0.00295EPSS
Exploits0References3
Github Security Blog
Github Security Blog
added 2025/05/13 9:34 p.m.43 views

OPKSSH Vulnerable to Authentication Bypass

Impact Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification. As OPKSSH depends on the OpenPubkey library for authentication, this vulnerability in OpenPubkey also applies to OPKSSH versions prior to 0.5....

9.8CVSS6.7AI score0.00295EPSS
Exploits0References4Affected Software1
NVD
NVD
added 2025/05/13 5:16 p.m.17 views

CVE-2025-4658

Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification. As OPKSSH depends on the OpenPubkey library for authentication, this vulnerability in OpenPubkey also applies to OPKSSH versions prior to 0.5.0 and...

9.8CVSS0.00295EPSS
Exploits0References1
Circl
Circl
added 2025/05/13 4:53 p.m.16 views

CVE-2025-4658

creationtimestamp| type| source ---|---|--- 2025-05-13 16:53:23+00:00| seen| https://infosec.exchange/users/cR0w/statuses/114501563358261613...

9.8CVSS7AI score0.00295EPSS
Exploits0References1
CVE
CVE
added 2025/05/13 4:33 p.m.58 views

CVE-2025-4658

CVE-2025-4658 affects the OpenPubkey library prior to 0.10.0, which allows a specially crafted JWS to bypass signature verification. Because OPKSSH relies on OpenPubkey for authentication, OPKSSH versions prior to 0.5.0 are also vulnerable and could bypass authentication. Public references in OSV...

9.8CVSS6.9AI score0.00295EPSS
Exploits0References1Affected Software2
Vulnrichment
Vulnrichment
added 2025/05/13 4:33 p.m.9 views

CVE-2025-4658 Authentication Bypass in OPKSSH

Versions of OpenPubkey library prior to 0.10.0 contained a vulnerability that would allow a specially crafted JWS to bypass signature verification. As OPKSSH depends on the OpenPubkey library for authentication, this vulnerability in OpenPubkey also applies to OPKSSH versions prior to 0.5.0 and...

9.3CVSS6.5AI score0.00295EPSS
Exploits0References1
Debian CVE
Debian CVE
added 2025/05/13 4:33 p.m.8 views

CVE-2025-4658

Removed by vendor...

9.8CVSS9.2AI score0.00295EPSS
Exploits0
Rows per page
Query Builder