CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

8 matches found

Tenable Nessus•added 2023/07/26 12:0 a.m.•1589 views

OpenSSH < 9.3p2 Vulnerability

The version of OpenSSH installed on the remote host is prior to 9.3p2. It is, therefore, affected by a vulnerability as referenced in the release-9.3p2 advisory. - Fix CVE-2023-38408 - a condition where specific libaries loaded via ssh-agent1's PKCS11 support could be abused to achieve remote cod...

9.8CVSS7.8AI score0.64352EPSS

Exploits10References2

Tenable Nessus•added 2023/07/21 12:0 a.m.•217 views

FreeBSD : OpenSSH -- remote code execution via a forwarded agent socket (887eb570-27d3-11ee-adba-c80aa9043978)

The version of FreeBSD installed on the remote host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the 887eb570-27d3-11ee-adba-c80aa9043978 advisory. - The PKCS11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path...

9.8CVSS8AI score0.64352EPSS

Exploits10References3

SUSE CVE•added 2023/02/15 4:54 a.m.•3 views

SUSE CVE-2016-10009

Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS11 modules by leveraging control over a forwarded agent-socket...

7.3CVSS8AI score0.01579EPSS

Exploits4References17

Broadcom•added 2017/05/17 12:0 a.m.•6 views

BSA-2017-272

Security Advisory ID : BSA-2017-272 Component : OpenSSH Revision : 2.0: Final Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS11 modules by leveraging control over a forwarded agent-socket. Affected...

7.5CVSS9.2AI score0.01579EPSS

Exploits4