Lucene search
K

842 matches found

OpenVAS
OpenVAS
added 2025/04/24 12:0 a.m.12 views

Erlang/OTP (Erlang OTP) RCE Vulnerability (Apr 2025) - Linux

Erlang/OTP Erlang OTP is prone to a remote code execution RCE vulnerability in the SSH server component. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

10CVSS8.4AI score0.97673EPSS
Exploits36References7
OpenVAS
OpenVAS
added 2025/04/24 12:0 a.m.18 views

Erlang/OTP (Erlang OTP) RCE Vulnerability (Apr 2025) - Windows

Erlang/OTP Erlang OTP is prone to a remote code execution RCE vulnerability in the SSH server component. SPDX-FileCopyrightText: 2025 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier:...

10CVSS8.4AI score0.97673EPSS
Exploits36References7
Tenable Nessus
Tenable Nessus
added 2025/04/23 12:0 a.m.10 views

Azure Linux 3.0 Security Update: erlang (CVE-2025-32433)

The version of erlang installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32433 advisory. - Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3,...

10CVSS8.9AI score0.97673EPSS
Exploits36References2
Tenable Nessus
Tenable Nessus
added 2025/04/23 12:0 a.m.26 views

CBL Mariner 2.0 Security Update: erlang (CVE-2025-32433)

The version of erlang installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-32433 advisory. - Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3,...

10CVSS8.9AI score0.97673EPSS
Exploits36References2
Cisco
Cisco
added 2025/04/22 9:45 p.m.33 views

Multiple Cisco Products Unauthenticated Remote Code Execution in Erlang/OTP SSH Server: April 2025

On April 16, 2025, a critical vulnerability in the Erlang/OTP SSH server was disclosed. This vulnerability could allow an unauthenticated, remote attacker to perform remote code execution RCE on an affected device. The vulnerability is due to a flaw in the handling of SSH messages during the...

10CVSS9.9AI score0.97673EPSS
Exploits36References1
GithubExploit
GithubExploit
added 2025/04/19 3:13 p.m.327 views

Exploit for Missing Authentication for Critical Function in Erlang Erlang\/Otp

Build bash » git clone https://github.com/0xPThree/cve-202...

10CVSS8.3AI score0.97673EPSS
Exploits36
NVD
NVD
added 2025/04/16 10:15 p.m.21 views

CVE-2025-32433

Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution RCE. By exploiting a flaw in SSH protocol message handling, a malicious actor...

10CVSS0.97673EPSS
Exploits36References14
Cvelist
Cvelist
added 2025/04/16 9:34 p.m.28 views

CVE-2025-32433 Erlang/OTP SSH Vulnerable to Pre-Authentication RCE

Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution RCE. By exploiting a flaw in SSH protocol message handling, a malicious actor...

10CVSS0.97673EPSS
Exploits36References4
Vulnrichment
Vulnrichment
added 2025/04/16 9:34 p.m.8 views

CVE-2025-32433 Erlang/OTP SSH Vulnerable to Pre-Authentication RCE

Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution RCE. By exploiting a flaw in SSH protocol message handling, a malicious actor...

10CVSS9.8AI score0.97673EPSS
Exploits36References4
OSV
OSV
added 2025/04/16 9:34 p.m.29 views

CVE-2025-32433 Erlang/OTP SSH Vulnerable to Pre-Authentication RCE

Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution RCE. By exploiting a flaw in SSH protocol message handling, a malicious actor...

10CVSS8.8AI score0.97673EPSS
Exploits36References16
ATTACKERKB
ATTACKERKB
added 2025/04/16 12:0 a.m.9 views

CVE-2025-32433

Erlang/OTP is a set of libraries for the Erlang programming language. Prior to versions OTP-27.3.3, OTP-26.2.5.11, and OTP-25.3.2.20, a SSH server may allow an attacker to perform unauthenticated remote code execution RCE. By exploiting a flaw in SSH protocol message handling, a malicious actor...

10CVSS10AI score0.97673EPSS
In wildExploits36References5
RedhatCVE
RedhatCVE
added 2025/03/27 5:11 a.m.8 views

CVE-2024-45482

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the SSH server on B APROL 4.4-00P1 may allow an authenticated local attacker from a trusted remote server to execute malicious commands...

8.5CVSS7AI score0.00138EPSS
Exploits0References1
RedhatCVE
RedhatCVE
added 2025/03/27 5:9 a.m.17 views

CVE-2024-45481

An Incomplete Filtering of Special Elements vulnerability in scripts using the SSH server on B APROL 4.4-00P5 may allow an authenticated local attacker to authenticate as another legitimate user...

8.5CVSS6.8AI score0.00138EPSS
Exploits0References1
NVD
NVD
added 2025/03/25 5:15 a.m.14 views

CVE-2024-45482

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the SSH server on B&R APROL 4.4-00P1 may allow an authenticated local attacker from a trusted remote server to execute malicious commands...

8.5CVSS0.00138EPSS
Exploits0References1
NVD
NVD
added 2025/03/25 5:15 a.m.15 views

CVE-2024-45481

An Incomplete Filtering of Special Elements vulnerability in scripts using the SSH server on B&R APROL 4.4-00P5 may allow an authenticated local attacker to authenticate as another legitimate user...

8.5CVSS0.00138EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2025/03/25 4:52 a.m.7 views

CVE-2024-45482 Privilege escalation in B&R APROL

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the SSH server on B&R APROL 4.4-00P1 may allow an authenticated local attacker from a trusted remote server to execute malicious commands...

8.5CVSS7.2AI score0.00138EPSS
Exploits0References1
Cvelist
Cvelist
added 2025/03/25 4:52 a.m.17 views

CVE-2024-45482 Privilege escalation in B&R APROL

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the SSH server on B&R APROL 4.4-00P1 may allow an authenticated local attacker from a trusted remote server to execute malicious commands...

8.5CVSS0.00138EPSS
Exploits0References1
CVE
CVE
added 2025/03/25 4:52 a.m.70 views

CVE-2024-45482

CVE-2024-45482 concerns the B&R APROL product. The SSH server in APROL versions prior to 4.4-00P1 may allow an authenticated local attacker from a trusted remote server to execute malicious commands due to an Inclusion of Functionality from an Untrusted Control Sphere vulnerability. Affected prod...

8.5CVSS7.2AI score0.00138EPSS
Exploits0References1
CVE
CVE
added 2025/03/25 4:52 a.m.52 views

CVE-2024-45481

CVE-2024-45481 affects the SSH server in B&R APROL prior to 4.4-00P5. The vulnerability is due to incomplete filtering of special elements in scripts, enabling an authenticated local attacker to authenticate as another legitimate user. CVSS 4.0 vector indicates Local access, Low privileges requir...

8.5CVSS6.8AI score0.00138EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2025/03/20 12:0 a.m.31 views

Azure Linux 3.0 Security Update: cert-manager / cf-cli / docker-buildx / docker-compose / kubernetes / kubevirt / moby-compose (CVE-2025-22869)

The version of cert-manager / cf-cli / docker-buildx / docker-compose / kubernetes / kubevirt / moby-compose installed on the remote Azure Linux 3.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2025-22869 advisory. - SSH servers which...

7.5CVSS6.9AI score0.00868EPSS
Exploits0References2
Rows per page
Query Builder