[R1] Stand-alone Security Patch Available for Tenable OT version 4.2.40: tenable-ot-platform-137

R1 Stand-alone Security Patch Available for Tenable OT version 4.2.40: tenable-ot-platform-137 Jason Schavel Thu, 03/19/2026 - 15:06 An SSH misconfigurations exists in Tenable OT that led to the potential exfiltration of socket, port, and service information via the ostunnel user and GatewayPorts...

EUVD-2005-2798

Malware in sbrugna...

SUSE CVE-2005-2797

OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding "-D" option when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality...

OpenSSH 4.0 < 4.2 Security Vulnerability

If no listen address is specified for dynamic port forwardings forwarding with the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This...

Linux: SSH GatewayPorts

GatewayPorts: Specifies whether remote hosts are allowed to connect to ports forwarded for the client. By default, sshd binds remote port forwardings to the loopback address. This prevents other remote hosts from connecting to forwarded ports. GatewayPorts can be used to specify that sshd should...

CVE-2005-2797

OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding "-D" option when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality...

CVE-2005-2797

OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding "-D" option when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality...

DEBIAN-CVE-2005-2797

OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding "-D" option when a listen address is not provided, which may cause OpenSSH to enable the GatewayPorts functionality...

CVE-2005-2797

Vulnerability summary ( OpenSSH 4.0 and earlier than 4.2 ) OpenSSH 4.0 and older than 4.2 is affected by improper handling of dynamic port forwarding when no listen address is provided for the -D option, which may enable GatewayPorts. The connected OpenVAS entry aligns with this class of issue bu...

Few OpenSSH vulnerabilities

GatewayPorts option can be incorrectly activated during dynamic port forwarding if no external interface is specified. If GSSAPIDelegateCredentials option is activated user who used different logon type can be delegated with GSSAPI credentials...