CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Veracode•added 2024/07/04 7:46 a.m.•11 views

Authentication Bypass

github.com/ginuerzh/gost is vulnerable to Authentication Bypass. The vulnerability is due to improper validation of the HostKeyCallback function. An attacker can intercept communications by setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

9.8CVSS6.8AI score0.00063EPSS

Exploits0References3Affected Software1

OSV•added 2024/07/03 6:48 p.m.•3 views

GHSA-8WXX-35QC-VP6R Missing key verification in gost

An authentication bypass in the SSH service of gost v2.11.5 allows attackers to intercept communications via setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

9.8CVSS9.4AI score0.00063EPSS

Exploits0References5

OSV•added 2024/07/03 3:15 p.m.•9 views

CVE-2024-39223

An authentication bypass in the SSH service of gost v2.11.5 allows attackers to intercept communications via setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

9.8CVSS7.4AI score

Exploits0References3

UbuntuCve•added 2024/07/03 3:15 p.m.•9 views

CVE-2024-39223

An authentication bypass in the SSH service of gost v2.11.5 allows attackers to intercept communications via setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

9.8CVSS7.1AI score0.00063EPSS

Exploits0References4

Cvelist•added 2024/07/03 12:0 a.m.•15 views

CVE-2024-39223

An authentication bypass in the SSH service of gost v2.11.5 allows attackers to intercept communications via setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

0.00063EPSS

Exploits0References3

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by