Lucene search
K

5 matches found

Tenable Nessus
Tenable Nessus
added 2026/03/06 12:0 a.m.7 views

NewStart CGSL MAIN 6.06 (SP) : openssh Multiple Vulnerabilities (NS-SA-2026-0003)

The remote NewStart CGSL host, running version MAIN 6.06 SP, has openssh packages installed that are affected by multiple vulnerabilities: - The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for access-control...

9.8CVSS7.6AI score0.88944EPSS
Exploits31References35
Amazon
Amazon
added 2026/02/19 12:0 a.m.6 views

Low: openssh

Issue Overview: In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding. CVE-2025-32728 ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted...

4.3CVSS6.8AI score0.00211EPSS
Exploits2
RedHat Linux
RedHat Linux
added 2025/11/11 8:30 a.m.7 views

openssh: OpenSSH SSHD Agent Forwarding and X11 Forwarding

A flaw was found in OpenSSH. In affected versions of sshd, the DisableForwarding directive does not fully adhere to the intended functionality as documented. Specifically, it fails to disable X11 and agent forwarding, which may allow unintended access under certain configurations...

4.3CVSS7.1AI score0.0016EPSS
Exploits0References5
RedHat Linux
RedHat Linux
added 2022/11/15 3:6 p.m.2 views

golang: net/http/httputil: ReverseProxy forwards connection headers if first one is empty

A flaw was found in Go, acting as an unintended proxy or intermediary, where ReverseProxy forwards connection headers if the first one was empty. This flaw allows an attacker to drop arbitrary headers. The highest threat from this vulnerability is to integrity...

5.3CVSS7.2AI score0.02279EPSS
Exploits1References5
OSV
OSV
added 2019/10/16 7:15 p.m.3 views

CVE-2019-15265

A vulnerability in the bridge protocol data unit BPDU forwarding functionality of Cisco Aironet Access Points APs could allow an unauthenticated, adjacent attacker to cause an AP port to go into an error disabled state. The vulnerability occurs because BPDUs received from specific wireless client...

6.5CVSS6.9AI score0.00318EPSS
Exploits0References1
Rows per page
Query Builder