EUVD-2019-10361

Malware in sbrugna...

EUVD-2019-9350

Malware in sbrugna...

EUVD-2019-10288

Malware in sbrugna...

Linux Distros Unpatched Vulnerability : CVE-2018-10896

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - The default cloud-init configuration, in cloud-init 0.6.2 and newer, included sshdeletekeys: 0, disabling cloud-init's deletion of ssh host keys. In some...

The vulnerability of the Git-based software platform for collaborative code development on GitLab stems from deficiencies in access control. This allows a malicious individual to alter the headers of deployment keys.

The vulnerability of the Git-based software platform for collaborative code development on GitLab is related to deficiencies in SSH key management during automated deployment scenarios. Exploiting this vulnerability could allow a malicious actor to modify the headers of deployment private keys...

The vulnerability of the microprogramming software in Schneider Electric Easergy P5 relay protection and control devices, related to errors in SSH-key management, allows attackers to gain unauthorized access to protected information.

The vulnerability of the microprogramming software in Schneider Electric Easergy P5 relay protection and control devices is related to errors in managing SSH keys. Exploiting this vulnerability can allow attackers to gain unauthorized access to protected information...

Bastillion - A Web-Based SSH Console That Centrally Manages Administrative Access To Systems

Bastillion is a web-based SSH console that centrally manages administrative access to systems. Web-based administration is combined with management and distribution of user's public SSH keys. Key management and administration is based on profiles assigned to defined users. Administrators can logi...

Linux: SSH LogLevel

INFO level is the basic level that only records login activity of SSH users. In many situations, such as Incident Response, it is important to determine when a particular user was active on a system. The logout record can eliminate those users who disconnected, which helps narrow the field. VERBO...

CVE-2019-1731

A vulnerability in the SSH CLI key management functionality of Cisco NX-OS Software could allow an authenticated, local attacker to expose a user's private SSH key to all authenticated users on the targeted device. The attacker must authenticate with valid administrator device credentials. The...

Design/Logic Flaw

A vulnerability in the SSH key management for the Cisco Nexus 9000 Series Application Centric Infrastructure ACI Mode Switch Software could allow an unauthenticated, remote attacker to connect to the affected system with the privileges of the root user. The vulnerability is due to the presence of...