Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

6 matches found

BDU FSTEC
BDU FSTECadded 2022/12/28 12:0 a.m.2 views

The vulnerability of the kbdint_next_device() function in the sshd service of the OpenSSH security tool allows a attacker to execute a brute-force attack or cause a service failure.

The vulnerability of the kbdintnextdevice function in the sshd service of the OpenSSH cryptographic protection mechanism is related to deficiencies in access control when processing the oKbdInteractiveDevices parameter, which contains a list of methods for authenticating using an interactive...

8.5CVSS6.6AI score0.78359EPSS
Exploits1References23Affected Software19
RedHat Linux
RedHat Linuxadded 2015/11/19 3:38 a.m.0 views

openssh: MaxAuthTries limit bypass via duplicates in KbdInteractiveDevices

It was discovered that the OpenSSH sshd daemon did not check the list of keyboard-interactive authentication methods for duplicates. A remote attacker could use this flaw to bypass the MaxAuthTries limit, making it easier to perform password guessing attacks...

8.5CVSS6.9AI score0.78359EPSS
Exploits1References5
CNVD
CNVDadded 2015/08/04 12:0 a.m.11 views

OpenSSH sshd vulnerability

OpenSSH OpenBSD Secure Shell is a set of connection tools for secure access to remote computers maintained by the OpenBSD Project Group. The tools are an open source implementation of the SSH protocol and support encryption of all transmissions, effectively blocking eavesdropping, connection...

8.5CVSS7.9AI score0.78359EPSS
Exploits1References1
OSV
OSVadded 2015/08/03 1:59 a.m.5 views

CVE-2015-5600

The kbdintnextdevice function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service CPU consumptio...

4.6AI score
Exploits0References33
CVE
CVEadded 2015/08/03 12:0 a.m.12378 views

CVE-2015-5600

Summary (CVE-2015-5600): The kbdint_next_device function in OpenSSH sshd up to version 6.9 fails to properly constrain keyboard-interactive device processing within a single connection, enabling remote brute-force attempts or a denial-of-service via a long/duplicative ssh -oKbdInteractiveDevices ...

8.5CVSS5.6AI score0.78359EPSS
Exploits1References33Affected Software1
Vulnrichment
Vulnrichmentadded 2015/08/03 12:0 a.m.2 views

CVE-2015-5600

The kbdintnextdevice function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force attacks or cause a denial of service CPU consumptio...

6.8AI score0.78359EPSS
Exploits1References33
Rows per page
Query Builder