Lucene search
K

14 matches found

Nuclei
Nuclei
added 2 days ago81 views

Cockpit Web Console < 360 - Remote Code Execution

Cockpit's remote login feature passes user-supplied hostnames and usernames from the web interface to the SSH client without validation or sanitization. An attacker with network access to the Cockpit web service can craft a single HTTP request to the login endpoint that injects malicious SSH...

9.8CVSS6.9AI score0.142EPSS
Exploits4References3
Snyk
Snyk
added last week5 views

Arbitrary Command Injection

Overview Affected versions of this package are vulnerable to Arbitrary Command Injection via the ssh process. An attacker can execute arbitrary commands on the operator's workstation by injecting malicious OpenSSH options when the operator runs non-interactive SSH commands. Remediation There is n...

8.3CVSS7.2AI score0.00225EPSS
Exploits0References2
Snyk
Snyk
added last week4 views

Arbitrary Command Injection

Overview Affected versions of this package are vulnerable to Arbitrary Command Injection via the ssh process. An attacker can execute arbitrary commands on the operator's workstation by injecting malicious OpenSSH options when the operator runs non-interactive SSH commands. Remediation Upgrade...

8.3CVSS7.2AI score0.00225EPSS
Exploits0References2
ATTACKERKB
ATTACKERKB
added last week7 views

CVE-2026-47829

Argument Injection in bosh-cli allows a compromised BOSH Director to inject arbitrary OpenSSH options into the locally-spawned ssh process when an operator runs bosh ssh -c, bosh logs -f, or other non-interactive SSH paths, leading to local command execution on the operator's workstation. Affecte...

8.3CVSS7.4AI score0.00225EPSS
Exploits0References2
EUVD
EUVD
added last week9 views

EUVD-2026-42515

Argument Injection in bosh-cli allows a compromised BOSH Director to inject arbitrary OpenSSH options into the locally-spawned ssh process when an operator runs bosh ssh -c, bosh logs -f, or other non-interactive SSH paths, leading to local command execution on the operator's workstation. Affecte...

8.3CVSS7.4AI score0.00225EPSS
Exploits0References1
OSV
OSV
added 2026/07/07 11:55 p.m.10 views

CVE-2026-55427 Coder vulnerable to SSH config injection via unsanitized server-supplied values in `coder config-ssh`

Coder allows organizations to provision remote development environments via Terraform. Prior to versions 2.29.7, 2.32.7, 2.33.8, and 2.34.2, coder config-ssh wrote server-supplied SSH settings HostnameSuffix, SSHConfigOptions into the user's /.ssh/config without sanitizing embedded newlines or...

8.3CVSS6.1AI score0.00466EPSS
Exploits0References8
EUVD
EUVD
added 2025/10/03 8:7 p.m.5 views

EUVD-2024-1168

Malicious code in bioql PyPI...

6.4CVSS6.4AI score0.00514EPSS
Exploits0References4
Tenable Nessus
Tenable Nessus
added 2025/09/02 12:0 a.m.8 views

Linux Distros Unpatched Vulnerability : CVE-2021-3197

The Linux/Unix host has one or more packages installed that are impacted by a vulnerability without a vendor supplied patch available. - An issue was discovered in SaltStack Salt before 3002.5. The salt-api's ssh client is vulnerable to a shell injection by including ProxyCommand in an argument, ...

9.8CVSS7.2AI score0.72327EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2025/02/10 12:0 a.m.6 views

Azure Linux 3.0 Security Update: rust (CVE-2024-32884)

The version of rust installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-32884 advisory. - gitoxide is a pure Rust implementation of Git. gix-transport does not check the username part of a URL for tex...

6.4CVSS6.8AI score0.00514EPSS
Exploits0References2
OSV
OSV
added 2024/04/26 6:15 p.m.10 views

AZL-40229 CVE-2024-32884 affecting package rust for versions less than 1.75.0-9

gitoxide is a pure Rust implementation of Git. gix-transport does not check the username part of a URL for text that the external ssh program would interpret as an option. A specially crafted clone URL can smuggle options to SSH. The possibilities are syntactically limited, but if a malicious clo...

6.4CVSS7.1AI score0.00514EPSS
Exploits0References1
Cvelist
Cvelist
added 2024/04/26 6:4 p.m.51 views

CVE-2024-32884 gix-transport indirect code execution via malicious username

gitoxide is a pure Rust implementation of Git. gix-transport does not check the username part of a URL for text that the external ssh program would interpret as an option. A specially crafted clone URL can smuggle options to SSH. The possibilities are syntactically limited, but if a malicious clo...

6.4CVSS7AI score0.00514EPSS
Exploits0References2
OSV
OSV
added 2024/04/26 6:4 p.m.5 views

CVE-2024-32884 gix-transport indirect code execution via malicious username

gitoxide is a pure Rust implementation of Git. gix-transport does not check the username part of a URL for text that the external ssh program would interpret as an option. A specially crafted clone URL can smuggle options to SSH. The possibilities are syntactically limited, but if a malicious clo...

6.4CVSS7.8AI score0.00514EPSS
Exploits0References4
BDU FSTEC
BDU FSTEC
added 2021/12/24 12:0 a.m.9 views

The vulnerability of the configuration management system and the remote execution feature of SaltStack Salt allow a perpetrator to execute arbitrary commands with elevated privileges.

The vulnerability of the Configuration Management system and the remote execution of operations in SaltStack Salt is related to errors in the processing of input data in the ssh-client salt-api. Exploiting this vulnerability allows a malicious actor to execute arbitrary commands with elevated...

10CVSS8.3AI score0.72327EPSS
Exploits0References12Affected Software4
PyPA
PyPA
added 2021/02/27 5:15 a.m.7 views

PYSEC-2021-57

An issue was discovered in SaltStack Salt before 3002.5. The salt-api's ssh client is vulnerable to a shell injection by including ProxyCommand in an argument, or via sshoptions provided in an API request...

9.8CVSS7.4AI score0.72327EPSS
Exploits0References7Affected Software1
Rows per page
Query Builder