CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

10 matches found

GithubExploit•added 2026/04/18 8:30 p.m.•212 views

Exploit for CVE-2026-4631

CVE-2026-4631 — Code Analysis Cockpit: Unauthenticated Rem...

9.8CVSS6.1AI score0.26505EPSS

Exploits3

EUVD•added 2026/03/11 6:30 p.m.•1 views

EUVD-2025-208581

An issue was discovered in Lantronix EDS5000 2.1.0.0R3. The SSH Client and SSH Server pages are affected by multiple OS injection vulnerabilities due to missing sanitization of input parameters. An attacker can inject arbitrary commands in delete actions of various objects, such as server keys,...

5.9AI score0.00043EPSS

Exploits0References4

OSV•added 2025/05/16 7:44 p.m.•2 views

MGASA-2025-0158 Updated dropbear packages fix security vulnerability

dbclient in Dropbear SSH before 2025.88 allows command injection via an untrusted hostname argument, because a shell is used...

4.5CVSS7.7AI score0.00195EPSS

Exploits0References3

OSV•added 2025/05/07 6:15 p.m.•7 views

CVE-2025-47203

dbclient in Dropbear SSH before 2025.88 allows command injection via an untrusted hostname argument, because a shell is used...

4.5CVSS7.3AI score

Exploits0References8

RedhatCVE•added 2025/02/05 8:58 a.m.•3 views

CVE-2024-38510

A privilege escalation vulnerability was discovered in the SSH captive command shell interface that could allow an authenticated XCC user with elevated privileges to perform command injection via specially crafted file uploads...

7.2CVSS7.6AI score0.00519EPSS

Exploits0References1

OSV•added 2024/05/14 8:16 p.m.•18 views

GHSA-JMQP-37M5-49WH sshproxy vulnerable to SSH option injection

Impact Any user authorized to connect to a ssh server using sshproxy can inject options to the ssh command executed by sshproxy. All versions of sshproxy are impacted. Patches The problem is patched starting on version 1.6.3 Workarounds The only workaround is to use the forcecommand option in...

3.5CVSS3.8AI score0.00353EPSS

Exploits0References5

Vulnrichment•added 2023/10/05 5:16 p.m.•8 views

CVE-2023-43068

Dell SmartFabric Storage Software v1.4 and earlier contains an OS Command Injection Vulnerability in the restricted shell in SSH. An authenticated remote attacker could potentially exploit this vulnerability, leading to execute arbitrary commands...

7.8CVSS8AI score0.00341EPSS

Exploits0References1

OSV•added 2020/07/17 9:15 p.m.•1 views

CVE-2020-5759

Grandstream UCM6200 series firmware version 1.0.20.23 and below is vulnerable to OS command injection via SSH. An authenticated remote attacker can execute commands as the root user by issuing a specially crafted "unset" command...

9.8CVSS5.9AI score0.10188EPSS

Exploits0References2

myhack58•added 2017/08/14 12:0 a.m.•49 views

SSH command injection Vulnerability(CVE-2017-1000117)analysis-vulnerability warning-the black bar safety net

0x01 vulnerability overview A malicious person can through the ingenious structure“ssh://...”link, and let the victim in the implementation of the program, such as the case to access the malicious link, so as to achieve command execution purposes. The links can be placed in the git project...

0.3AI score0.70245EPSS

Exploits9

FreeBSD•added 2017/08/10 12:0 a.m.•44 views

cvs -- Remote code execution via ssh command injection

Hank Leininger reports: Bugs in Git, Subversion, and Mercurial were just announced and patched which allowed arbitrary local command execution if a malicious name was used for the remote server, such as starting with - to pass options to the ssh client: git clone...

7.5CVSS7.8AI score0.02504EPSS

Exploits1References2

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by