Lucene search
+L

139 matches found

Vulnrichment
Vulnrichment
added 2025/04/10 12:0 a.m.11 views

CVE-2025-32728

In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent forwarding...

4.3CVSS4.7AI score0.00178EPSS
Exploits0References5
Fedora
Fedora
added 2025/03/21 12:18 a.m.19 views

[SECURITY] Fedora 42 Update: openssh-9.9p1-9.fc42

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

6.8CVSS7.8AI score0.38474EPSS
Exploits5
Tenable Nessus
Tenable Nessus
added 2025/03/05 12:0 a.m.19 views

Linux Distros Unpatched Vulnerability : CVE-2023-48795

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks...

5.9CVSS6.8AI score0.93305EPSS
Exploits4References4
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.23 views

Linux Distros Unpatched Vulnerability : CVE-2020-15778

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE:...

7.8CVSS7.2AI score0.12996EPSS
Exploits6References4
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.9 views

Linux Distros Unpatched Vulnerability : CVE-2018-15919

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 ...

5.3CVSS6.6AI score0.03557EPSS
Exploits1References4
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.11 views

Linux Distros Unpatched Vulnerability : CVE-2016-6210

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - sshd in OpenSSH before 7.3, when SHA256 or SHA512 are used for user password hashing, uses BLOWFISH hashing on a static password when the username does not exis...

5.9CVSS6.9AI score0.88944EPSS
Exploits12References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.24 views

Linux Distros Unpatched Vulnerability : CVE-2016-10009

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local PKCS11 modules by...

7.5CVSS7.3AI score0.37431EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2025/03/04 12:0 a.m.24 views

Linux Distros Unpatched Vulnerability : CVE-2015-5600

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The kbdintnextdevice function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a...

8.5CVSS6.8AI score0.09302EPSS
Exploits1References2
OSV
OSV
added 2025/02/28 9:25 p.m.31 views

CVE-2025-26466 Openssh: denial-of-service in openssh

A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and stored in a queue of packages. It is only freed when the server/client key exchange has finished. A malicious client may keep sending such packages, leading to ...

5.9CVSS7AI score0.38474EPSS
Exploits4References20
OSV
OSV
added 2025/02/28 2:39 p.m.15 views

SUSE-SU-2025:0744-1 Security update for openssh8.4

This update for openssh8.4 fixes the following issues: - CVE-2025-26465: Fixed a MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client bsc1237040. Other bugfixes: - Fix usage of local accelerator cards via openssl-ibmca bsc1216474, bsc1218871. - Add patches from upstream to change the...

6.8CVSS6.6AI score0.07449EPSS
Exploits4References11
OSV
OSV
added 2025/02/23 12:3 p.m.11 views

SUSE-SU-2025:0659-1 Security update for openssh

This update for openssh fixes the following issues: - CVE-2025-26465: Fixed a MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client bsc1237040. - Add a s390 specific ioctl for ECC hardware support bsc1225637: - for migration to openssh 8.4: write active/enabled switch over files only if n...

6.8CVSS6.8AI score0.07449EPSS
Exploits4References5
OSV
OSV
added 2025/02/20 2:43 p.m.14 views

SUSE-SU-2025:0605-1 Security update for openssh

This update for openssh fixes the following issues: - CVE-2025-26465: Fixed MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client bsc1237040...

6.8CVSS6.9AI score0.07449EPSS
Exploits4References3
Fedora
Fedora
added 2025/02/20 2:28 a.m.25 views

[SECURITY] Fedora 41 Update: openssh-9.9p1-3.fc41

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

6.8CVSS6.9AI score0.38474EPSS
Exploits5
OpenVAS
OpenVAS
added 2025/02/19 12:0 a.m.16 views

Slackware: Security Advisory (SSA:2025-049-01)

The remote host is missing an update for the SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS6.3AI score0.38474EPSS
Exploits5References5
OSV
OSV
added 2025/02/18 4:42 p.m.27 views

SUSE-SU-2025:0585-1 Security update for openssh

This update for openssh fixes the following issues: - CVE-2025-26465: Fixed MitM attack against OpenSSH's VerifyHostKeyDNS-enabled client bsc1237040. - CVE-2025-26466: Fixed DoS attack against OpenSSH's client and server bsc1237041...

6.8CVSS6.6AI score0.38474EPSS
Exploits5References5
Debian
Debian
added 2025/02/18 9:26 a.m.100 views

[SECURITY] [DSA 5868-1] openssh security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5868-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 18, 2025 https://www.debian.org/security/faq -...

6.8CVSS6.6AI score0.07449EPSS
Exploits4
OSV
OSV
added 2025/02/18 12:0 a.m.21 views

DLA-4057-1 openssh - security update

Bulletin has no description...

6.8CVSS6.6AI score0.07449EPSS
Exploits4
OSV
OSV
added 2024/09/17 1:15 a.m.22 views

RHSA-2005:106 Red Hat Security Advisory: openssh security update

Bulletin has no description...

4.3CVSS9.3AI score0.0182EPSS
Exploits0References10
OSV
OSV
added 2024/09/13 6:2 a.m.11 views

RHSA-2013:1591 Red Hat Security Advisory: openssh security, bug fix, and enhancement update

Bulletin has no description...

7.5CVSS5.8AI score0.1651EPSS
Exploits1References9
Debian
Debian
added 2024/07/01 8:30 a.m.34 views

[SECURITY] [DSA 5724-1] openssh security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5724-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso July 01, 2024 https://www.debian.org/security/faq -...

8.1CVSS7.9AI score0.99506EPSS
Exploits69
Rows per page
Query Builder