Lucene search
+L

48 matches found

nessus
nessus
added 2026/06/30 12:0 a.m.10 views

Linux Distros Unpatched Vulnerability : CVE-2026-6092

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - When HAVEENCRYPTTHENMAC is configured, the implementation could fall back to MAC-then-Encrypt rather than enforcing Encrypt-then-MAC. CVE-2026-6092 Note that...

5.3CVSS6.1AI score0.00209EPSS
Exploits0References3
euvd
euvd
added 2026/06/26 12:32 a.m.5 views

EUVD-2026-39573

When HAVEENCRYPTTHENMAC is configured, the implementation could fall back to MAC-then-Encrypt rather than enforcing Encrypt-then-MAC...

2.1CVSS5.8AI score0.00209EPSS
Exploits0References3
nvd
nvd
added 2026/06/25 10:17 p.m.9 views

CVE-2026-6092

When HAVEENCRYPTTHENMAC is configured, the implementation could fall back to MAC-then-Encrypt rather than enforcing Encrypt-then-MAC...

5.3CVSS0.00209EPSS
Exploits0References2
osv
osv
added 2026/06/25 10:17 p.m.2 views

DEBIAN-CVE-2026-6092

When HAVEENCRYPTTHENMAC is configured, the implementation could fall back to MAC-then-Encrypt rather than enforcing Encrypt-then-MAC...

5.3CVSS5.7AI score0.00209EPSS
Exploits0References1
osv
osv
added 2026/06/25 10:17 p.m.3 views

UBUNTU-CVE-2026-6092

When HAVEENCRYPTTHENMAC is configured, the implementation could fall back to MAC-then-Encrypt rather than enforcing Encrypt-then-MAC...

5.3CVSS5.7AI score0.00209EPSS
Exploits0References5
attackerkb
attackerkb
added 2026/06/25 9:6 p.m.7 views

CVE-2026-6092

When HAVEENCRYPTTHENMAC is configured, the implementation could fall back to MAC-then-Encrypt rather than enforcing Encrypt-then-MAC...

2.1CVSS5.8AI score0.00209EPSS
Exploits0References3Affected Software1
cve
cve
added 2026/06/25 9:6 p.m.18 views

CVE-2026-6092

CVE-2026-6092 describes a behavioural fallback issue when HAVE_ENCRYPT_THEN_MAC is configured: the implementation could fall back to MAC-then-Encrypt instead of Encrypt-then-MAC. The connected documents reiterate this description across multiple sources (NVD, ENISA EUVD, Debian security tracker, ...

5.3CVSS5.8AI score0.00209EPSS
Exploits0References2Affected Software1
cvelist
cvelist
added 2026/06/25 9:6 p.m.26 views

CVE-2026-6092 Encrypt-then-MAC could fall back to MAC-then-Encrypt when HAVE_ENCRYPT_THEN_MAC is configured

When HAVEENCRYPTTHENMAC is configured, the implementation could fall back to MAC-then-Encrypt rather than enforcing Encrypt-then-MAC...

2.1CVSS0.00209EPSS
Exploits0References2
debiancve
debiancve
added 2026/06/25 9:6 p.m.6 views

CVE-2026-6092

When HAVEENCRYPTTHENMAC is configured, the implementation could fall back to MAC-then-Encrypt rather than enforcing Encrypt-then-MAC...

5.3CVSS5.7AI score0.00209EPSS
Exploits0
alpinelinux
alpinelinux
added 2026/06/25 9:6 p.m.5 views

CVE-2026-6092

When HAVEENCRYPTTHENMAC is configured, the implementation could fall back to MAC-then-Encrypt rather than enforcing Encrypt-then-MAC...

5.3CVSS5.7AI score0.00209EPSS
Exploits0References2
ptsecurity
ptsecurity
added 2026/06/25 12:0 a.m.16 views

PT-2026-52600

Name of the Vulnerable Software and Affected Versions The product name cannot be determined affected versions not specified Description When HAVE ENCRYPT THEN MAC is configured, the implementation may incorrectly fall back to MAC-then-Encrypt instead of enforcing the Encrypt-then-MAC sequence...

5.3CVSS5.8AI score0.00209EPSS
Exploits0References7
euvd
euvd
added 2025/10/07 12:30 a.m.4 views

EUVD-2017-12850

Malware in sbrugna...

7.5CVSS7.6AI score0.12874EPSS
Exploits0References11
astralinux
astralinux
added 2025/06/16 11:28 a.m.10 views

Astra Linux – Vulnerabilities in libpod, Erlang, Paramiko

The SSH transport protocol, with certain OpenSSH extensions, found in OpenSSH versions prior to 9.6 and other products, allows remote attackers to bypass integrity checks. As a result, some packets may be omitted from the extension negotiation message. Consequently, the client and server may end ...

5.9CVSS6.9AI score0.93305EPSS
Exploits4References5
openvas
openvas
added 2024/05/30 12:0 a.m.23 views

Huawei EulerOS: Security Advisory for python-paramiko (EulerOS-SA-2024-1773)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

5.9CVSS7AI score0.93305EPSS
Exploits4References2
openvas
openvas
added 2024/04/22 12:0 a.m.68 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-1533)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.93305EPSS
Exploits12References2
openvas
openvas
added 2024/04/22 12:0 a.m.46 views

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-1552)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.5AI score0.93305EPSS
Exploits12References2
openvas
openvas
added 2024/03/13 12:0 a.m.19 views

Huawei EulerOS: Security Advisory for proftpd (EulerOS-SA-2024-1345)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2024 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS6.7AI score0.93305EPSS
Exploits5References2
osv
osv
added 2024/01/26 11:6 a.m.5 views

OESA-2024-1104 libssh security update

The ssh library was designed to be used by programmers needing a working SSH implementation by the mean of a library. The complete control of the client is made by the programmer. With libssh, you can remotely execute programs, transfer files, use a secure and transparent tunnel for your remote...

5.9CVSS6.7AI score0.93305EPSS
Exploits4References2
osv
osv
added 2024/01/19 11:6 a.m.3 views

OESA-2024-1081 openssh security update

OpenSSH is the premier connectivity tool for remote login with the SSH protocol. \ It encrypts all traffic to eliminate eavesdropping, connection hijacking, and \ other attacks. In addition, OpenSSH provides a large suite of secure tunneling \ capabilities, several authentication methods, and...

5.9CVSS6.7AI score0.93305EPSS
Exploits4References2
osv
osv
added 2024/01/12 11:6 a.m.7 views

OESA-2024-1066 openssh security update

OpenSSH is the premier connectivity tool for remote login with the SSH protocol. \ It encrypts all traffic to eliminate eavesdropping, connection hijacking, and \ other attacks. In addition, OpenSSH provides a large suite of secure tunneling \ capabilities, several authentication methods, and...

5.9CVSS6.7AI score0.93305EPSS
Exploits4References2
Rows per page
Query Builder