Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

1851 matches found

NVD
NVDadded 2021/08/31 5:15 p.m.19 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS0.04596EPSS
Exploits0References8
Prion
Prionadded 2021/08/31 5:15 p.m.26 views

Design/Logic Flaw

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

4CVSS7.3AI score0.04596EPSS
Exploits0References8Affected Software6
Debian
Debianadded 2021/08/31 2:43 p.m.40 views

[SECURITY] [DSA 4965-1] libssh security update

------------------------------------------------------------------------- Debian Security Advisory DSA-4965-1 [email protected] https://www.debian.org/security/ Moritz Muehlenhoff August 31, 2021 https://www.debian.org/security/faq -...

6.5CVSS7.3AI score0.04596EPSS
Exploits0
CVE
CVEadded 2021/08/31 12:0 a.m.479 views

CVE-2021-3634

CVE-2021-3634 affects libssh

6.5CVSS6.5AI score0.04596EPSS
Exploits0References8Affected Software1
Cvelist
Cvelistadded 2021/08/31 12:0 a.m.20 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.9AI score0.04596EPSS
Exploits0References8
Debian CVE
Debian CVEadded 2021/08/31 12:0 a.m.47 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS6.2AI score0.04596EPSS
Exploits0
OSV
OSVadded 2021/08/31 12:0 a.m.27 views

DSA-4965-1 libssh - security update

Bulletin has no description...

6.5CVSS6.1AI score0.04596EPSS
Exploits0
AlpineLinux
AlpineLinuxadded 2021/08/31 12:0 a.m.30 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS6.9AI score0.04596EPSS
Exploits0
Veracode
Veracodeadded 2021/08/27 9:15 p.m.31 views

Denial Of Service

libssh is vulnerable to denial of service. The vulnerability exists due to authentication function which is using the buffer size of the initial secret key which can cause a heap-buffer overflow...

6.5CVSS4AI score0.04596EPSS
Exploits0References13Affected Software1
NCSC
NCSCadded 2021/08/27 12:0 a.m.3 views

Vulnerability fixed in libssh

A vulnerability has been fixed in libssh. A malicious party could potentially exploit the vulnerability to cause a denial-of-service cause or execute arbitrary code with the privileges of application that uses libssh. It is good practice to apply the principle of "privilege separation" to this ty...

6.5CVSS7.1AI score0.04596EPSS
Exploits0
OpenVAS
OpenVASadded 2021/08/27 12:0 a.m.13 views

Ubuntu: Security Advisory (USN-5053-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.04596EPSS
Exploits0References2
Ubuntu
Ubuntuadded 2021/08/26 3:37 p.m.116 views

USN-5053-1: libssh vulnerability

It was discovered that libssh incorrectly handled rekeying. A remote attacker could use this issue to cause libssh to crash, resulting in a denial of service, or possibly execute arbitrary code...

6.5CVSS6.8AI score0.04596EPSS
Exploits0
OSV
OSVadded 2021/08/26 3:37 p.m.2 views

USN-5053-1 libssh vulnerability

It was discovered that libssh incorrectly handled rekeying. A remote attacker could use this issue to cause libssh to crash, resulting in a denial of service, or possibly execute arbitrary code...

6.5CVSS6.8AI score0.04596EPSS
Exploits0References2
RedhatCVE
RedhatCVEadded 2021/08/26 1:32 p.m.39 views

CVE-2021-3634

A flaw has been found in libssh. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept and used as an input to new...

6.5CVSS1.7AI score0.04596EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2021/08/26 12:0 a.m.49 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS6.5AI score0.04596EPSS
Exploits0References2
OSV
OSVadded 2021/08/26 12:0 a.m.2 views

UBUNTU-CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS6.5AI score0.04596EPSS
Exploits0References3
CNNVD
CNNVDadded 2021/08/26 12:0 a.m.2 views

Libssh 缓冲区错误漏洞

Libssh is a C development package from the Libssh organization for accessing SSH services, which can execute remote commands, file transfers, and provide a secure transport channel for remote programs. libssh is vulnerable to a buffer overflow vulnerability, which stems from the fact that libssh...

6.5CVSS7AI score0.04596EPSS
Exploits0References53
Tenable Nessus
Tenable Nessusadded 2021/08/26 12:0 a.m.118 views

Ubuntu 20.04 LTS : libssh vulnerability (USN-5053-1)

The remote Ubuntu 20.04 LTS host has packages installed that are affected by a vulnerability as referenced in the USN-5053-1 advisory. It was discovered that libssh incorrectly handled rekeying. A remote attacker could use this issue to cause libssh to crash, resulting in a denial of service, or...

6.5CVSS6.8AI score0.04596EPSS
Exploits0References2
FreeBSD
FreeBSDadded 2021/08/26 12:0 a.m.32 views

libssh -- possible heap-buffer overflow vulnerability

libssh security advisories: The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept and used as an input to new...

6.5CVSS2.4AI score0.04596EPSS
Exploits0References2
ALT Linux
ALT Linuxadded 2021/07/30 12:0 a.m.28 views

Security fix for the ALT Linux 9 package libssh version 0.9.5-alt1

0.9.5-alt1 built July 30, 2021 Nikolai Kostrigin in task 277424 May 12, 2021 Sergey V Turchin - new version - security fixes: CVE-2020-16135...

4.3CVSS6.2AI score0.04105EPSS
Exploits1
Rows per page
Query Builder