CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

OpenSSH OpenBSD Secure Shell is a Canadian OpenBSD open source set of connection tools for secure access to remote computers. The tools are an open source implementation of the SSH protocol and support encryption of all transmissions, effectively blocking eavesdropping, connection hijacking, and...

3.6CVSS9.3AI score0.00061EPSS

Exploits0References4

EUVD•added 2025/10/03 8:7 p.m.•3 views

EUVD-2022-2584

Malicious code in bioql PyPI...

9.8CVSS9.5AI score0.00061EPSS

Exploits0References3

EUVD•added 2025/10/03 8:7 p.m.•1 views

EUVD-2025-22513

Malicious code in bioql PyPI...

4.7CVSS6.2AI score0.00158EPSS

Exploits0References2

Cvelist•added 2025/09/10 4:6 p.m.•8 views

CVE-2025-20159 Cisco IOS XR Software Management Interface ACL Bypass Vulnerability

A vulnerability in the management interface access control list ACL processing feature in Cisco IOS XR Software could allow an unauthenticated, remote attacker to bypass configured ACLs for the SSH, NetConf, and gRPC features. This vulnerability exists because management interface ACLs have not...

5.3CVSS0.00044EPSS

Exploits0References1

OSV•added 2025/08/04 8:28 p.m.•5 views

GHSA-H5RC-J5F5-3GCM russh is missing overflow checks during channel windows adjust

Summary The channel window adjust message of the SSH protocol is used to track the free space in the receive buffer of the other side of a channel. The current implementation takes the value from the message and adds it to an internal state value. This can result in a integer overflow. If the Rus...

6.5CVSS6.6AI score0.00365EPSS

Exploits1References4

Github Security Blog•added 2025/08/04 8:28 p.m.•5 views

russh is missing overflow checks during channel windows adjust

6.5CVSS7.6AI score0.00365EPSS

Exploits1References4Affected Software1

RedhatCVE•added 2025/07/28 10:10 a.m.•3 views

CVE-2023-53158

A flaw was found in gix-transport. The handling of clone URLs by the crate allows an attacker to execute arbitrary commands by injecting a malicious substring into the URL, specifically through the ssh protocol and ProxyCommand option. This vulnerability allows a local attacker to trigger command...

4.1CVSS6.9AI score0.00072EPSS

Exploits0References7

Tenable Nessus•added 2025/07/25 12:0 a.m.•5 views

NewStart CGSL MAIN 7.02 : python-pynacl Vulnerability (NS-SA-2025-0193)

The remote NewStart CGSL host, running version MAIN 7.02, has python-pynacl packages installed that are affected by a vulnerability: - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks suc...

5.9CVSS7.1AI score0.52998EPSS

Exploits4References3

Debian CVE•added 2025/07/24 2:14 p.m.•2 views

CVE-2025-8114

A flaw was found in libssh, a library that implements the SSH protocol. When calculating the session ID during the key exchange KEX process, an allocation failure in cryptographic functions may lead to a NULL pointer dereference. This issue can cause the client or server to crash...

4.7CVSS6AI score0.00158EPSS

Exploits0

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by