Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

22 matches found

Tenable Nessus
Tenable Nessusadded 2022/05/18 12:0 a.m.39 views

Oracle Linux 8 : libssh (ELSA-2022-2031)

The remote Oracle Linux 8 host has packages installed that are affected by a vulnerability as referenced in the ELSA-2022-2031 advisory. - Fix CVE-2021-3634: Fix possible heap-buffer overflow when rekeying with different key exchange mechanism Tenable has extracted the preceding description block...

6.5CVSS6.4AI score0.00108EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2022/05/18 12:0 a.m.23 views

Rocky Linux 8 : libssh (RLSA-2022:2031)

The remote Rocky Linux 8 host has packages installed that are affected by a vulnerability as referenced in the RLSA-2022:2031 advisory. - A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them ...

6.5CVSS6.2AI score0.00108EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2022/05/12 12:0 a.m.16 views

AlmaLinux 8 : libssh (ALSA-2022:2031)

The remote AlmaLinux 8 host has packages installed that are affected by a vulnerability as referenced in the ALSA-2022:2031 advisory. - A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is...

6.5CVSS6.2AI score0.00108EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2021/11/17 12:0 a.m.27 views

EulerOS Virtualization 2.9.0 : libssh (EulerOS-SA-2021-2787)

According to the versions of the libssh package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime...

6.5CVSS6.2AI score0.00108EPSS
Exploits0References2
OpenVAS
OpenVASadded 2021/11/17 12:0 a.m.10 views

Huawei EulerOS: Security Advisory for libssh (EulerOS-SA-2021-2753)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.00108EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2021/11/17 12:0 a.m.28 views

EulerOS Virtualization 2.9.1 : libssh (EulerOS-SA-2021-2753)

According to the versions of the libssh package installed, the EulerOS Virtualization installation on the remote host is affected by the following vulnerabilities : - A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime...

6.5CVSS6.2AI score0.00108EPSS
Exploits0References2
OpenVAS
OpenVASadded 2021/11/17 12:0 a.m.21 views

Huawei EulerOS: Security Advisory for libssh (EulerOS-SA-2021-2787)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.00108EPSS
Exploits0References2
OpenVAS
OpenVASadded 2021/11/12 12:0 a.m.17 views

Huawei EulerOS: Security Advisory for libssh (EulerOS-SA-2021-2691)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.5CVSS6.9AI score0.00108EPSS
Exploits0References2
Tenable Nessus
Tenable Nessusadded 2021/10/01 12:0 a.m.28 views

FreeBSD : libssh -- possible heap-buffer overflow vulnerability (57b1ee25-1a7c-11ec-9376-0800272221cc)

libssh security advisories : The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept and used as an input to new...

6.5CVSS6.3AI score0.00108EPSS
Exploits0References4
Mageia
Mageiaadded 2021/09/23 4:49 a.m.35 views

Updated libssh packages fix security vulnerability

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS1.9AI score0.00108EPSS
Exploits0References5
Tenable Nessus
Tenable Nessusadded 2021/09/02 12:0 a.m.28 views

Debian DSA-4965-1 : libssh - security update

The remote Debian 11 host has packages installed that are affected by a vulnerability as referenced in the dsa-4965 advisory. It was discovered that a buffer overflow in rekeying in libssh could result in denial of service or potentially the execution of arbitrary code. The oldstable distribution...

6.5CVSS7AI score0.00108EPSS
Exploits0References6
NVD
NVDadded 2021/08/31 5:15 p.m.14 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS0.00108EPSS
Exploits0References8
OSV
OSVadded 2021/08/31 5:15 p.m.16 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS6.4AI score
Exploits0References8
Prion
Prionadded 2021/08/31 5:15 p.m.23 views

Design/Logic Flaw

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

4CVSS7.3AI score0.00108EPSS
Exploits0References8Affected Software6
Cvelist
Cvelistadded 2021/08/31 12:0 a.m.19 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.9AI score0.00108EPSS
Exploits0References8
Debian CVE
Debian CVEadded 2021/08/31 12:0 a.m.46 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS6.2AI score0.00108EPSS
Exploits0
CVE
CVEadded 2021/08/31 12:0 a.m.475 views

CVE-2021-3634

CVE-2021-3634 affects libssh

6.5CVSS6.5AI score0.00108EPSS
Exploits0References8Affected Software1
AlpineLinux
AlpineLinuxadded 2021/08/31 12:0 a.m.30 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS6.9AI score0.00108EPSS
Exploits0
RedhatCVE
RedhatCVEadded 2021/08/26 1:32 p.m.38 views

CVE-2021-3634

A flaw has been found in libssh. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept and used as an input to new...

6.5CVSS1.7AI score0.00108EPSS
Exploits0References3
OSV
OSVadded 2021/08/26 12:0 a.m.0 views

UBUNTU-CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS6.5AI score0.00108EPSS
Exploits0References3
Rows per page
Query Builder