Lucene search
K

116 matches found

The Hacker News
The Hacker News
added 2022/02/10 1:59 p.m.24 views

FritzFrog P2P Botnet Attacking Healthcare, Education and Government Sectors

A peer-to-peer Golang botnet has resurfaced after more than a year to compromise servers belonging to entities in the healthcare, education, and government sectors within a span of a month, infecting a total of 1,500 hosts. Dubbed FritzFrog, "the decentralized botnet targets any device that expos...

6.7AI score
Exploits0
Positive Technologies
Positive Technologies
added 2022/01/12 12:0 a.m.5 views

PT-2022-15855 · Jenkins · Jenkins Publish Over Ssh Plugin +1

Name of the Vulnerable Software and Affected Versions: Jenkins Publish Over SSH Plugin versions 1.22 and earlier Description: A missing permission check in the plugin allows attackers with Overall/Read access to connect to an attacker-specified SSH server using attacker-specified credentials...

6.5CVSS6.1AI score0.00855EPSS
Exploits0References12
OpenVAS
OpenVAS
added 2022/01/11 12:0 a.m.29 views

SUSE: Security Advisory (SUSE-SU-2022:0040-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.00984EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2021/11/12 12:0 a.m.45 views

Oracle Linux 8 : container-tools:ol8 (ELSA-2021-1796)

The remote Oracle Linux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the ELSA-2021-1796 advisory. - address CVE-2019-19921 by updating to rc10 Tenable has extracted the preceding description block directly from the Oracle Linux security advisory. No...

7.5CVSS7.2AI score0.03228EPSS
Exploits1References3
NVD
NVD
added 2021/06/09 4:15 p.m.11 views

CVE-2020-15387

The host SSH servers of Brocade Fabric OS before Brocade Fabric OS v7.4.2h, v8.2.1c, v8.2.2, v9.0.0, and Brocade SANnav before v2.1.1 utilize keys of less than 2048 bits, which may be vulnerable to man-in-the-middle attacks and/or insecure SSH communications...

7.4CVSS0.00491EPSS
Exploits0References1
Prion
Prion
added 2021/06/09 4:15 p.m.14 views

Design/Logic Flaw

The host SSH servers of Brocade Fabric OS before Brocade Fabric OS v7.4.2h, v8.2.1c, v8.2.2, v9.0.0, and Brocade SANnav before v2.1.1 utilize keys of less than 2048 bits, which may be vulnerable to man-in-the-middle attacks and/or insecure SSH communications...

5.8CVSS7.3AI score0.00491EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/06/09 3:24 p.m.19 views

CVE-2020-15387

The host SSH servers of Brocade Fabric OS before Brocade Fabric OS v7.4.2h, v8.2.1c, v8.2.2, v9.0.0, and Brocade SANnav before v2.1.1 utilize keys of less than 2048 bits, which may be vulnerable to man-in-the-middle attacks and/or insecure SSH communications...

7.3AI score0.00491EPSS
Exploits0References1
CVE
CVE
added 2021/06/09 3:24 p.m.61 views

CVE-2020-15387

The CVE-2020-15387 entry concerns Brocade Fabric OS hosts whose SSH servers (and SANnav) used keys

7.4CVSS7.3AI score0.00491EPSS
Exploits0References1Affected Software2
OpenVAS
OpenVAS
added 2021/06/09 12:0 a.m.43 views

SUSE: Security Advisory (SUSE-SU-2019:13931-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

6.8CVSS7.3AI score0.58204EPSS
Exploits10References7
IBM Security Bulletins
IBM Security Bulletins
added 2021/05/13 10:23 a.m.50 views

Security Bulletin: Vulnerability in OpenSSH affects IBM Integrated Analytics System

Summary Redhat provided OpenSSH is used by IBM Integrated Analytics System. This bulletin provides mitigation for the reported CVE. Vulnerability Details CVEID: CVE-2020-14145 DESCRIPTION: OpenSSH is vulnerable to a man-in-the-middle attack, caused by an observable discrepancy flaw. An attacker...

5.9CVSS1.2AI score0.02057EPSS
Exploits2Affected Software1
Debian CVE
Debian CVE
added 2020/12/17 4:12 a.m.26 views

CVE-2020-29652

A nil pointer dereference in the golang.org/x/crypto/ssh component through v0.0.0-20201203163018-be400aefbc4c for Go allows remote attackers to cause a denial of service against SSH servers...

7.5CVSS7.4AI score0.03228EPSS
Exploits0
ThreatPost
ThreatPost
added 2020/08/19 8:46 p.m.225 views

FritzFrog Botnet Attacks Millions of SSH Servers

A peer-to-peer P2 botnet called FritzFrog has hopped onto the scene, and researchers said it has been actively breaching SSH servers since January. SSH servers are pieces of software found in routers and IoT devices, among other machines, and they use the secure shell protocol to accept connectio...

9.6AI score0.26869EPSS
Exploits0References5
The Hacker News
The Hacker News
added 2020/08/19 10:5 a.m.154 views

A New Fileless P2P Botnet Malware Targeting SSH Servers Worldwide

Cybersecurity researchers today took the wraps off a sophisticated, multi-functional peer-to-peer P2P botnet written in Golang that has been actively targeting SSH servers since January 2020. Called "FritzFrog," the modular, multi-threaded and file-less botnet has breached more than 500 servers t...

7.2AI score
Exploits0
FireEye
FireEye
added 2020/07/13 12:0 a.m.27 views

SCANdalous! (External Detection Using Network Scan Data and Automation)

Real Quick In case you’re thrown by that fantastic title, our lawyers made us change the name of this project so we wouldn’t get sued. SCANdalous—a.k.a. Scannah Montana a.k.a. Scanny McScanface a.k.a. “Scan I Kick It? Yes You Scan”—had another name before today that, for legal reasons, we’re...

7AI score
Exploits0References10
ThreatPost
ThreatPost
added 2020/05/05 3:32 p.m.36 views

New Kaiji Botnet Targets IoT, Linux Devices

A new botnet has been infecting internet of things IoT devices and Linux-based servers, to then leverage them in distributed denial-of-service DDoS attacks. The malware, dubbed Kaiji, has been written from scratch, which researchers say is “rare in the IoT botnet landscape” today. Kaiji, which wa...

7.6AI score
Exploits0References14
Exploit DB
Exploit DB
added 2020/02/24 12:0 a.m.169 views

Go SSH servers 0.0.2 - Denial of Service (PoC)

Exploit Title: Go SSH servers 0.0.2 - Denial of Service PoC Author: Mark Adams Date: 2020-02-21 Link: https://github.com/mark-adams/exploits/blob/master/CVE-2020-9283/poc.py CVE: CVE-2020-9283 Running this script may crash the remote SSH server if it is vulnerable. The GitHub repository contains ...

7.5CVSS7.7AI score0.21052EPSS
Exploits6
Tenable Nessus
Tenable Nessus
added 2019/12/04 12:0 a.m.43 views

EulerOS 2.0 SP2 : openssh (EulerOS-SA-2019-2483)

According to the version of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerability : - In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filenam...

5.3CVSS7AI score0.03681EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/10/31 12:0 a.m.94 views

Amazon Linux AMI : openssh (ALAS-2019-1313)

An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server or Man-in-The-Middle attacker can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This...

6.8CVSS7.2AI score0.58204EPSS
Exploits9References4
Tenable Nessus
Tenable Nessus
added 2019/08/12 12:0 a.m.32 views

NewStart CGSL MAIN 4.05 : openssh-latest Vulnerability (NS-SA-2019-0157)

The remote NewStart CGSL host, running version MAIN 4.05, has openssh-latest packages installed that are affected by a vulnerability: - In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact i...

5.3CVSS7AI score0.03681EPSS
Exploits0References2
Tenable Nessus
Tenable Nessus
added 2019/05/31 12:0 a.m.109 views

Amazon Linux 2 : openssh (ALAS-2019-1216)

An issue was discovered in OpenSSH. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned only directory traversal attacks are prevented. A...

6.8CVSS7.2AI score0.58204EPSS
Exploits9References4
Rows per page
Query Builder