CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

562 matches found

Astra Linux – Vulnerability in Paramiko

In Paramiko before 2.10.1, a race condition between creation and chmod in the writeprivatekeyfile function could allow unauthorized information disclosure...

5.9CVSS6AI score0.0208EPSS

Exploits1References2

OPENSUSE Linux•added 2026/06/15 12:0 a.m.•4 views

python311-paramiko-5.0.0-1.1 on GA media (moderate)

python311-paramiko-5.0.0-1.1 on GA media Announcement ID: openSUSE-SU-2026:11025-1 Rating: moderate Cross-References: CVE-2018-1000805 CVE-2018-7750 CVE-2026-44405 CVSS scores: CVE-2018-1000805 SUSE : 9.8 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H CVE-2018-7750 SUSE : 10...

10CVSS8AI score0.27065EPSS

Exploits10

OSV•added 2026/06/13 12:0 a.m.•4 views

OPENSUSE-SU-2026:11025-1 python311-paramiko-5.0.0-1.1 on GA media

These are all security issues fixed in the python311-paramiko-5.0.0-1.1 package on the GA media of openSUSE Tumbleweed...

9.8CVSS5.4AI score0.27065EPSS

Exploits10References3

Tenable Nessus•added 2026/05/22 12:0 a.m.•6 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: python-paramiko (UTSA-2026-016596)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-016596 advisory. In Paramiko before 2.10.1, a race condition between creation and chmod in the writeprivatekeyfile function could allow unauthorized information disclosure. Tenable h...

5.9CVSS6.6AI score0.0208EPSS

Exploits1References4

IBM Security Bulletins•added 2026/05/18 5:24 p.m.•18 views

Security Bulletin: Storage Virtualize Ansible Collection is affected by a vulnerability in the paramiko package

Summary Storage Virtualize Ansible Collection uses the paramiko package to provide common ssh capability. paramiko-4.0.0-py3-none-any.whl is vulnerable to CVE-2026-44405. Vulnerability Details CVEID:CVE-2026-44405 DESCRIPTION: In Paramiko through 4.0.0 before a448945, rsakey.py allows the SHA-1...

3.4CVSS5.8AI score0.00114EPSS

Exploits0Affected Software1

Tenable Nessus•added 2026/05/11 12:0 a.m.•8 views

Unity Linux 20.1050e / 20.1060e / 20.1070e Security Update: python-paramiko (UTSA-2026-017484)

The Unity Linux 20 host has a package installed that is affected by a vulnerability as referenced in the UTSA-2026-017484 advisory. Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 contains a Incorrect Access Control vulnerability in SSH server that can result in RCE. This attac...

8.8CVSS5.8AI score0.04407EPSS

Exploits0References4

Wolfi•added 2026/05/10 2:21 a.m.•19 views

CVE-2026-44405 vulnerabilities

Vulnerabilities for packages: superset, datadog-agent, airflow, py3-paramiko...

3.4CVSS6.6AI score0.00114EPSS

Exploits0

Wolfi•added 2026/05/10 2:21 a.m.•19 views

GHSA-R374-RXX8-8654 vulnerabilities

Vulnerabilities for packages: superset, datadog-agent, airflow, py3-paramiko...

5.8AI score

Exploits0

Chainguard•added 2026/05/10 1:17 a.m.•13 views

CVE-2026-44405 vulnerabilities

Vulnerabilities for packages: pgadmin4, nemo, py3-paramiko, superset, datadog-agent, datadog-agent-fips, duplicity, keep-fips, airflow, keep...

3.4CVSS6.6AI score0.00114EPSS

Exploits0

Chainguard•added 2026/05/10 1:17 a.m.•11 views

GHSA-R374-RXX8-8654 vulnerabilities

Vulnerabilities for packages: pgadmin4, nemo, py3-paramiko, superset, datadog-agent, datadog-agent-fips, duplicity, keep-fips, airflow, keep...

5.8AI score

Exploits0

SUSE CVE•added 2026/05/07 2:16 a.m.•10 views

SUSE CVE-2026-44405

In Paramiko through 4.0.0 before a448945, rsakey.py allows the SHA-1 algorithm...

3.4CVSS5.8AI score0.00114EPSS

Exploits0References3

RedhatCVE•added 2026/05/06 5:53 a.m.•9 views

CVE-2026-44405

A flaw was found in Paramiko, a Python implementation of the SSHv2 protocol. The rsakey.py module allows the use of the SHA-1 cryptographic hash algorithm, which is known to have security weaknesses. An attacker on the same local network, with significant effort, could potentially exploit this to...

3.4CVSS5.8AI score0.00114EPSS

Exploits0References5

Snyk•added 2026/05/06 1:21 a.m.•8 views

Use of a Broken or Risky Cryptographic Algorithm

Overview paramiko is a library for making SSH2 connections client or server. Affected versions of this package are vulnerable to Use of a Broken or Risky Cryptographic Algorithm in the RSA key handling by allowing the use of the SHA-1 algorithm. An attacker can compromise the integrity of...

4.7CVSS5.8AI score0.00114EPSS

Exploits0References2

vulnersOsv•added 2026/05/06 1:21 a.m.•10 views

0lever-utils (>=0.0.2 <=0.0.7), a12rta (=0.1.0) +1799 more potentially affected by CVE-2026-44405 via paramiko (>=1.15.0 <=4.0.0)

paramiko PYPI version =1.15.0, =0.0.2, =1.0.1, =0.0.15, =1.0.0, =0.15.0, =0.2.0, =1.0.1, =0.5.0, =2026.2.3, =0.0.0, =0.0.1, =0.1.1, =0.1.4 and more Source cves: CVE-2026-44405 Source advisory: SNYK:PYTHON-PARAMIKO-16425764...

3.4CVSS5.4AI score0.00114EPSS

Exploits0

vulnersOsv•added 2026/05/06 12:31 a.m.•7 views

0lever-utils (>=0.0.2 <=0.0.7), a12rta (=0.1.0) +1799 more potentially affected by CVE-2026-44405 via paramiko (>=1.15.0 <=4.0.0)

3.4CVSS5.4AI score0.00114EPSS

Exploits0