Lucene search
K

6380 matches found

Cvelist
Cvelist
added 4 days ago123 views

CVE-2026-60002

ssh in OpenSSH before 10.4 can have a use-after-free when a server changes its host key during a key re-exchange. This outcome occurs only on the client side...

7.7CVSS0.00263EPSS
Exploits0References3
CVE
CVE
added 4 days ago80 views

CVE-2026-60002

Summary (CVE-2026-60002): OpenSSH

9.4CVSS6AI score0.00263EPSS
Exploits0References3Affected Software1
CVE
CVE
added 4 days ago24 views

CVE-2026-60001

Technical details are not publicly available in the provided documents for CVE-2026-60001. Monitor for updates.

6.5CVSS5.9AI score0.00265EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 4 days ago7 views

CVE-2026-60001

sshd in OpenSSH before 10.4 does not always honor the minimum authentication delay...

6.5CVSS5.9AI score0.00265EPSS
Exploits0
AlpineLinux
AlpineLinux
added 4 days ago4 views

CVE-2026-60001

sshd in OpenSSH before 10.4 does not always honor the minimum authentication delay...

6.5CVSS5.9AI score0.00265EPSS
Exploits0References3
CVE
CVE
added 4 days ago26 views

CVE-2026-60000

CVE-2026-60000 affects OpenSSH sshd prior to 10.4. The vulnerability arises from mishandling MaxAuthTries for GSSAPIAuthentication, enabling a remote attacker to cause denial of service via resource exhaustion from excessive authentication attempts. Impact is a server-wide DoS (availability loss)...

7.5CVSS6AI score0.00407EPSS
Exploits0References3Affected Software1
AlpineLinux
AlpineLinux
added 4 days ago4 views

CVE-2026-60000

sshd in OpenSSH before 10.4 allows remote attackers to cause a denial of service resource consumption from excessive authentication attempts because MaxAuthTries was mishandled for GSSAPIAuthentication...

7.5CVSS6AI score0.00407EPSS
Exploits0References3
EUVD
EUVD
added 4 days ago7 views

EUVD-2026-42143

sshd in OpenSSH before 10.4 allows remote attackers to cause a denial of service resource consumption from excessive authentication attempts because MaxAuthTries was mishandled for GSSAPIAuthentication...

3.7CVSS6AI score0.00407EPSS
Exploits0References3
EUVD
EUVD
added 4 days ago6 views

EUVD-2026-42142

In sshd in OpenSSH before 10.4, DisableForwarding=yes was supposed to take precedence over PermitTunnel=yes, but did not...

5.9CVSS5.9AI score0.00133EPSS
Exploits0References3
CVE
CVE
added 4 days ago29 views

CVE-2026-59999

CVE-2026-59999 affects OpenSSH sshd prior to 10.4, where the intended precedence of DisableForwarding=yes over PermitTunnel=yes did not hold. The available documents confirm the root cause is an ordering/precedence bug in sshd, but do not provide concrete details on affected product versions beyo...

7.5CVSS5.9AI score0.00133EPSS
Exploits0References3Affected Software1
Debian CVE
Debian CVE
added 4 days ago5 views

CVE-2026-59999

In sshd in OpenSSH before 10.4, DisableForwarding=yes was supposed to take precedence over PermitTunnel=yes, but did not...

7.5CVSS5.9AI score0.00133EPSS
Exploits0
Cvelist
Cvelist
added 4 days ago115 views

CVE-2026-59999

In sshd in OpenSSH before 10.4, DisableForwarding=yes was supposed to take precedence over PermitTunnel=yes, but did not...

5.9CVSS0.00133EPSS
Exploits0References3
EUVD
EUVD
added 4 days ago14 views

EUVD-2026-42141

sshd in OpenSSH before 10.4 has an undocumented security-relevant behavior: GSSAPIStrictAcceptorCheck has no value if the server is in Windows Active Directory...

4.8CVSS5.9AI score0.00179EPSS
Exploits0References3
CVE
CVE
added 4 days ago22 views

CVE-2026-59998

OpenSSH sshd (CVE-2026-59998) affects builds before 10.4. The issue is an undocumented security-relevant behavior where GSSAPIStrictAcceptorCheck has no value when the server runs in Windows Active Directory. CVSS v3.1 base score 4.8 (Medium) and impact on confidentiality/integrity (Low) with net...

6.5CVSS5.9AI score0.00179EPSS
Exploits0References3Affected Software1
Cvelist
Cvelist
added 4 days ago116 views

CVE-2026-59997

internal-sftp in sshd in OpenSSH before 10.4 recognizes only the first 9 command-line arguments, which can be important if a later command-line argument would have helped to ensure the intended security properties of an SFTP connection...

4.2CVSS0.0016EPSS
Exploits0References3
CVE
CVE
added 4 days ago73 views

CVE-2026-59997

The CVE affects OpenSSH’s internal-sftp helper invoked by sshd, where the process only parses the first 9 command-line arguments. This is tied to OpenSSH before version 10.4. According to the description, this could undermine intended security properties of an SFTP connection if a later argument ...

5.4CVSS6AI score0.0016EPSS
Exploits0References3Affected Software1
EUVD
EUVD
added 4 days ago7 views

EUVD-2026-42138

scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations...

4.2CVSS6AI score0.00218EPSS
Exploits0References3
Cvelist
Cvelist
added 4 days ago108 views

CVE-2026-59996

scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations...

4.2CVSS0.00218EPSS
Exploits0References3
Debian CVE
Debian CVE
added 4 days ago3 views

CVE-2026-59996

scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations...

5.4CVSS6AI score0.00218EPSS
Exploits0
AlpineLinux
AlpineLinux
added 4 days ago4 views

CVE-2026-59996

scp in OpenSSH before 10.4 may place a file in the parent directory of an intended directory when the copy occurs between two remote destinations...

5.4CVSS6AI score0.00218EPSS
Exploits0References3
Rows per page
Query Builder