CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

1851 matches found

Positive Technologies•added 2025/01/01 12:0 a.m.•2 views

PT-2025-30668

Name of the Vulnerable Software and Affected Versions libssh affected versions not specified Description A flaw exists in libssh, a library implementing the SSH protocol. During the key exchange KEX process, an allocation failure within cryptographic functions can result in a NULL pointer...

8.8CVSS6.6AI score0.02394EPSS

Exploits0References59

IBM Security Bulletins•added 2024/12/14 12:58 p.m.•19 views

Security Bulletin: Vulnerabilities in libssh (CVE-2023-6004, CVE-2023-6918) affect Power HMC.

Summary The libssh library is used by Power Hardware Management Console HMC. HMC has addressed the applicable CVEs. Vulnerability Details CVEID:CVE-2023-6004 DESCRIPTION: libssh could allow a local authenticated attacker to execute arbitrary commands on the system, caused by a flaw in the...

5.3CVSS7.7AI score0.01421EPSS

Exploits0Affected Software1

F5 Networks•added 2024/11/22 9:1 p.m.•23 views

K000148495: libssh vulnerability CVE-2023-1667

Security Advisory Description A NULL pointer dereference was found In libssh during re-keying with algorithm guessing. This issue may allow an authenticated client to cause a denial of service. CVE-2023-1667 Impact This vulnerability may allow an authenticated client to cause a denial-of-service...

6.5CVSS6.5AI score0.01314EPSS

Exploits0Affected Software1

Tenable Nessus•added 2024/11/22 12:0 a.m.•4 views

F5 Networks BIG-IP : libssh vulnerability (K000148495)

The version of F5 Networks BIG-IP installed on the remote host is prior to 17.1.3.1 / 17.5.1.4 / 21.0.0. It is, therefore, affected by a vulnerability as referenced in the K000148495 advisory. A NULL pointer dereference was found In libssh during re-keying with algorithm guessing. This issue may...

6.5CVSS6.4AI score0.01314EPSS

Exploits0References2

IBM Security Bulletins•added 2024/11/15 9:51 p.m.•31 views

Security Bulletin: TSSC/IMC is vulnerable to a bypass security restrictions attack on curl

Summary TSSC/IMC is vulnerable to a bypass security restrictions attack on curl. A patch has been provided that updates the libssh library. CVE-2023-28322, CVE-2023-38546, CVE-2023-46218 Vulnerability Details CVEID:CVE-2023-28322 DESCRIPTION: cURL libcurl could allow a remote attacker to bypass...

6.5CVSS7AI score0.06208EPSS

Exploits2Affected Software1

F5 Networks•added 2024/11/11 2:18 p.m.•13 views

K000148483: libssh vulnerabilities CVE-2019-14889 and CVE-2023-3603

Security Advisory Description CVE-2019-14889 A flaw was found with the libssh API function sshscpnew in versions before 0.9.3 and before 0.8.8. When the libssh SCP client connects to a server, the scp command, which includes a user-provided path, is executed on the server-side. In case the librar...

9.3CVSS6.5AI score0.03174EPSS

Exploits0

Rosalinux•added 2024/10/29 9:48 a.m.•18 views

Advisory ROSA-SA-2024-2516

software: libssh 0.9.7 OS: ROSA-CHROME packageevrstring: libssh-0.9.7-1 CVE-ID: CVE-2023-1667 BDU-ID: 2023-03857 CVE-Crit: MEDIUM CVE-DESC.: A vulnerability in the LibSSH client authentication library is related to pointer dereferencing errors. Exploitation of the vulnerability allows an attacker...

6.5CVSS7.3AI score0.01314EPSS

Exploits2