Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

206 matches found

Ubuntu
Ubuntuadded 2026/03/12 6:31 p.m.7 views

USN-8090-2: OpenSSH vulnerabilities

USN-8090-1 fixed vulnerabilities in OpenSSH. This update provides the corresponding updates for Ubuntu 20.04 LTS. Original advisory details: Jeremy Brown discovered that the OpenSSH GSSAPI Key Exchange incorrectly handled disconnecting clients. In non-default configurations where the...

7.5CVSS6.1AI score0.00061EPSS
Exploits2
Ubuntu
Ubuntuadded 2026/03/12 6:16 p.m.4 views

USN-8090-1: OpenSSH vulnerabilities

Jeremy Brown discovered that the OpenSSH GSSAPI Key Exchange incorrectly handled disconnecting clients. In non-default configurations where the GSSAPIKeyExchange setting is enabled, a remote attacker could use this issue to cause OpenSSH to crash, resulting in a denial of service, or possibly...

7.5CVSS6.1AI score0.00061EPSS
Exploits2
OSV
OSVadded 2026/03/12 6:16 p.m.3 views

USN-8090-1 openssh vulnerabilities

Jeremy Brown discovered that the OpenSSH GSSAPI Key Exchange incorrectly handled disconnecting clients. In non-default configurations where the GSSAPIKeyExchange setting is enabled, a remote attacker could use this issue to cause OpenSSH to crash, resulting in a denial of service, or possibly...

7.5CVSS6.7AI score0.00061EPSS
Exploits2References4
Tenable Nessus
Tenable Nessusadded 2026/02/19 12:0 a.m.10 views

Amazon Linux 2023 : openssh, openssh-clients, openssh-keycat (ALAS2023-2026-1441)

It is, therefore, affected by multiple vulnerabilities as referenced in the ALAS2023-2026-1441 advisory. ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to code execution when a ProxyCommand is used. The...

3.6CVSS6.8AI score0.00061EPSS
Exploits2References6
Broadcom
Broadcomadded 2026/02/19 12:0 a.m.14 views

OpenSSH security update (CVE-2025-61985)

ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand is used...

3.6CVSS6.1AI score0.00061EPSS
Exploits0
Amazon
Amazonadded 2026/02/18 12:0 a.m.6 views

Low: openssh

Issue Overview: ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to code execution when a ProxyCommand is used. The untrusted sources are the command line and %-sequence expansion of a configuration file....

3.6CVSS6.1AI score0.00061EPSS
Exploits2
RedHat Linux
RedHat Linuxadded 2026/02/03 1:31 p.m.3 views

Moderate: Red Hat Security Advisory: openssh security update

An update for openssh is now available for Red Hat Enterprise Linux 9.2 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

3.6CVSS6.7AI score0.00061EPSS
Exploits2References3
RedHat Linux
RedHat Linuxadded 2026/02/03 1:31 p.m.4 views

openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand

A flaw was found in OpenSSH where control characters in usernames were not properly validated when sourced from untrusted inputs like the command line or configuration expansion. If a ProxyCommand is used, these control characters could modify command behavior, potentially leading to code executi...

3.6CVSS6.4AI score0.00012EPSS
Exploits2References7
RedHat Linux
RedHat Linuxadded 2026/02/03 7:4 a.m.3 views

openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand

A flaw was found in OpenSSH where the SSH client accepted \0 null characters in ssh:// URIs. When a ProxyCommand is configured, these characters could alter how the command is parsed, potentially leading to code execution depending on how the proxy is set up...

3.6CVSS6.7AI score0.00061EPSS
Exploits0References7
RedHat Linux
RedHat Linuxadded 2026/02/03 7:4 a.m.6 views

Moderate: Red Hat Security Advisory: openssh security update

An update for openssh is now available for Red Hat Enterprise Linux 9.0 Update Services for SAP Solutions. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is...

6.5CVSS7.1AI score0.17234EPSS
Exploits9References4
RedHat Linux
RedHat Linuxadded 2026/02/03 7:4 a.m.2 views

openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand

A flaw was found in OpenSSH where control characters in usernames were not properly validated when sourced from untrusted inputs like the command line or configuration expansion. If a ProxyCommand is used, these control characters could modify command behavior, potentially leading to code executi...

3.6CVSS6.4AI score0.00012EPSS
Exploits2References7
Tenable Nessus
Tenable Nessusadded 2026/02/03 12:0 a.m.2 views

RHEL 9 : openssh (RHSA-2026:1790)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:1790 advisory. OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files...

6.5CVSS8.9AI score0.17234EPSS
Exploits9References9
Tenable Nessus
Tenable Nessusadded 2026/02/03 12:0 a.m.2 views

RHEL 9 : openssh (RHSA-2026:1815)

The remote Redhat Enterprise Linux 9 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:1815 advisory. OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files...

3.6CVSS6.2AI score0.00061EPSS
Exploits2References7
RedHat Linux
RedHat Linuxadded 2026/02/02 8:15 a.m.4 views

Moderate: Red Hat Security Advisory: openssh security update

An update for openssh is now available for Red Hat Enterprise Linux 10.0 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for...

3.6CVSS6.7AI score0.00061EPSS
Exploits2References3
RedHat Linux
RedHat Linuxadded 2026/02/02 8:15 a.m.0 views

openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand

A flaw was found in OpenSSH where the SSH client accepted \0 null characters in ssh:// URIs. When a ProxyCommand is configured, these characters could alter how the command is parsed, potentially leading to code execution depending on how the proxy is set up...

3.6CVSS6.7AI score0.00061EPSS
Exploits0References7
Tenable Nessus
Tenable Nessusadded 2026/02/02 12:0 a.m.2 views

RHEL 10 : openssh (RHSA-2026:1678)

The remote Redhat Enterprise Linux 10 host has packages installed that are affected by multiple vulnerabilities as referenced in the RHSA-2026:1678 advisory. OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files...

3.6CVSS6.2AI score0.00061EPSS
Exploits2References7
Tenable Nessus
Tenable Nessusadded 2026/01/31 12:0 a.m.3 views

EulerOS Virtualization 2.10.0 : openssh (EulerOS-SA-2026-1186)

According to the versions of the openssh packages installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : ssh in OpenSSH before 10.1 allows the '\0' character in an ssh:// URI, potentially leading to code execution when a ProxyCommand i...

6.8CVSS7.1AI score0.64523EPSS
Exploits6References5
F5 Networks
F5 Networksadded 2026/01/23 5:16 a.m.8 views

K000159684: OpenSSH vulnerabilities CVE-2025-61984 and CVE-2025-61985

Security Advisory Description CVE-2025-61984 ssh in OpenSSH before 10.1 allows control characters in usernames that originate from certain possibly untrusted sources, potentially leading to code execution when a ProxyCommand is used. The untrusted sources are the command line and %-sequence...

3.6CVSS6.2AI score0.00061EPSS
Exploits2
RedHat Linux
RedHat Linuxadded 2026/01/22 9:20 a.m.3 views

openssh: OpenSSH: Control characters in usernames can lead to code execution via ProxyCommand

A flaw was found in OpenSSH where control characters in usernames were not properly validated when sourced from untrusted inputs like the command line or configuration expansion. If a ProxyCommand is used, these control characters could modify command behavior, potentially leading to code executi...

3.6CVSS6.4AI score0.00012EPSS
Exploits2References7
RedHat Linux
RedHat Linuxadded 2026/01/22 9:20 a.m.2 views

openssh: OpenSSH: Null character in ssh:// URI can lead to code execution via ProxyCommand

A flaw was found in OpenSSH where the SSH client accepted \0 null characters in ssh:// URIs. When a ProxyCommand is configured, these characters could alter how the command is parsed, potentially leading to code execution depending on how the proxy is set up...

3.6CVSS6.7AI score0.00061EPSS
Exploits0References7
Rows per page
Query Builder