Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

7 matches found

Check Point Advisories
Check Point Advisoriesadded 2017/04/23 12:0 a.m.3 views

OpenSSH kex_input_kexinit Denial of Service (CVE-2016-8858)

A denial of service vulnerability has been reported in OpenSSH. The vulnerability is due to improper implementation of the kexinputkexinit function in the kex module allowing the function to be repeated after receipt of a message. A remote attacker could exploit this vulnerability by sending...

7.8CVSS3.8AI score0.31178EPSS
Exploits0
Prion
Prionadded 2016/12/09 11:59 a.m.617 views

Design/Logic Flaw

The kexinputkexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service memory consumption by sending many duplicate KEXINIT requests. NOTE: a third party reports that "OpenSSH upstream does not consider this as a security issue."...

7.8CVSS7AI score0.31178EPSS
Exploits0References13Affected Software1
NVD
NVDadded 2016/12/09 11:59 a.m.17 views

CVE-2016-8858

The kexinputkexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service memory consumption by sending many duplicate KEXINIT requests. NOTE: a third party reports that "OpenSSH upstream does not consider this as a security issue."...

7.8CVSS7.4AI score0.31178EPSS
Exploits0References13
Debian CVE
Debian CVEadded 2016/12/09 12:0 a.m.44 views

CVE-2016-8858

The kexinputkexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service memory consumption by sending many duplicate KEXINIT requests. NOTE: a third party reports that "OpenSSH upstream does not consider this as a security issue."...

7.8CVSS7.7AI score0.31178EPSS
Exploits0
Cvelist
Cvelistadded 2016/12/09 12:0 a.m.26 views

CVE-2016-8858

The kexinputkexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service memory consumption by sending many duplicate KEXINIT requests. NOTE: a third party reports that "OpenSSH upstream does not consider this as a security issue."...

7.3AI score0.31178EPSS
Exploits0References13
CVE
CVEadded 2016/12/09 12:0 a.m.5631 views

CVE-2016-8858

CVE-2016-8858 affects OpenSSH 6.x and 7.x up to 7.3, where the kex_input_kexinit() function can be triggered by remote KEXINIT messages to exhaust memory and cause a denial of service. Public sources in connected docs describe memory consumption per connection (examples range up to 128 MB per con...

7.8CVSS7.2AI score0.31178EPSS
Exploits0References13Affected Software1
RedhatCVE
RedhatCVEadded 2016/10/20 7:47 a.m.60 views

CVE-2016-8858

DISPUTED The kexinputkexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service memory consumption by sending many duplicate KEXINIT requests. NOTE: a third party reports that "OpenSSH upstream does not consider this as a security issue."...

7.8CVSS5AI score0.31178EPSS
Exploits0References1
Rows per page
Query Builder