CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

Node.js•added 2018/07/31 4:26 p.m.•17 views

Malicious Package

Overview All versions of boogeyman are considered malicious. This particular package would download a payload from pastebin.com, eval it to read ssh keys and the users .npmrc and send them to a private pastebin account. Recommendation This package was published to the npm Registry for a very shor...

6.6AI score

RedhatCVE•added 2018/07/10 1:18 p.m.•24 views

CVE-2018-10896

The default cloud-init configuration included "sshdeletekeys: 0", disabling cloud-init's deletion of ssh host keys. In some environments, this could lead to instances created by cloning a golden master or template system, sharing ssh host keys, and being able to impersonate one another or conduct...

7.1CVSS2.3AI score0.00354EPSS

Exploits0References2

IBM Security Bulletins•added 2018/06/17 3:15 p.m.•46 views

Security Bulletin: Vulnerabilities in OpenSSH affect IBM MessageSight (CVE-2016-0777, CVE-2016-0778)

Summary An information leak flaw and buffer overflow flaw in the way the OpenSSH client roaming feature was implemented affects IBM MessageSight. Vulnerability Details CVEID: CVE-2016-0777 DESCRIPTION: OpenSSH could allow a remote attacker to obtain sensitive information, caused by a client...

8.1CVSS1.7AI score0.63468EPSS

Exploits3Affected Software1

IBM Security Bulletins•added 2018/06/16 9:30 p.m.•24 views

Security Bulletin: IBM QRadar SIEM is vulnerable to SSH key exposure. (CVE-2015-2008)

Summary Exposing SSH private keys allows potential attackers to escalate privileges from console admin to root. Vulnerability Details VULNERABILITY DETAILS CVE-ID: CVE-2015-2008 Description: IBM QRadar SIEM stores private SSH keys in the backup which could allow a user with administrator access t...

4.4CVSS1.4AI score0.00788EPSS

Prion•added 2018/05/09 1:29 p.m.•10 views

Hardcoded credentials

A hard-coded cryptographic key vulnerability was identified in Red Lion Controls Sixnet-Managed Industrial Switches running firmware Version 5.0.196 and Stride-Managed Ethernet Switches running firmware Version 5.0.190. Vulnerable versions of Stride-Managed Ethernet switches and Sixnet-Managed...

10CVSS7.1AI score0.01563EPSS

Exploits0References1Affected Software2

OSV•added 2018/05/09 1:29 p.m.•3 views

CVE-2016-9335

10CVSS5.8AI score0.01563EPSS

NVD•added 2018/05/09 1:29 p.m.•12 views

CVE-2016-9335

10CVSS9.4AI score0.01563EPSS

Cvelist•added 2018/05/09 1:0 p.m.•19 views

CVE-2016-9335

9.4AI score0.01563EPSS

Wallarm Lab•added 2018/05/08 4:10 p.m.•41 views

Wallarm Node — now as a Google Cloud image

Today we’re excited to announce native availability of Wallarm Node image for Google Cloud Platform GCP. Many Wallarm customers and prospects use Google Cloud for its high-performance, scalable infrastructure with excellent price/performance. The ability to customize machine types to customer...

7.4AI score

Kitploit•added 2018/03/30 12:11 p.m.•12 views

Hwacha - Deploy Payloads To *Nix Systems En Masse

Hwacha is a tool to quickly execute payloads on Nix based systems. Easily collect artifacts or execute shellcode on an entire subnet of systems for which credentials are obtained. $python hwacha.py &&&& && && && &&&&&&&&&&&& && && && Created by Esteban Rodriguez /\ &&&&&& && &&&&&&&&&& && Web:...

7.8AI score

Hacker One•added 2018/02/25 7:14 p.m.•79 views

Node.js third-party modules: `sshpk` is vulnerable to ReDoS when parsing crafted invalid public keys

I would like to report a ReDoS in sshpk It allows to cause Denial of Service by trying to parse a crafted public key. Module module name: sshpk version: 1.13.1 npm page: https://www.npmjs.com/package/sshpk Module Description Parse, convert, fingerprint and use SSH keys both public and private in...

6.5AI score

Atlassian•added 2017/12/14 11:55 p.m.•17 views

Authentication fails using SSH keys since 2.3.5

Neither the Pagent agent or OpenSSH is working to authenticate since I upgraded. Switching SSH services makes no difference. If I go to the command line, using ssh -i identfile I have no issues authenticating to any system. Other symptoms include the terminal not going to the repository but using...

1.3AI score

Atlassian•added 2017/12/14 11:55 p.m.•75 views

Authentication fails using SSH keys since 2.3.5

1.3AI score

OSV•added 2017/11/01 1:29 p.m.•14 views

CVE-2017-1000245

The SSH Plugin stores credentials which allow jobs to access remote servers via the SSH protocol. User passwords and passphrases for encrypted SSH keys are stored in plaintext in a configuration file...

9.8CVSS6.7AI score

ThreatPost•added 2017/10/19 2:26 p.m.•11 views

Hackers Take Aim at SSH Keys in New Wave of Attacks

SSH private keys are being targeted by hackers who have stepped up their scanning of thousands of servers hosting WordPress websites in search of private keys. Since Monday, security researchers said they have observed a single entity scanning as many as 25,000 systems a day seeking vulnerable SS...

0.1AI score

Exploits0References2

Node.js•added 2017/10/04 11:30 p.m.•80 views

Exfiltrates data on installation

Overview The jquey package is malware that attempts to discover and exfiltrate sensitive data such as a user's private SSH key and bash history, sending them to attacker controlled locations. All versions have been unpublished from the npm registry. Recommendation If you have found jquey installe...

5CVSS4.1AI score0.01123EPSS

Node.js•added 2017/10/04 11:26 p.m.•81 views

Exfiltrates data on installation

Overview The cofee-script package is a piece of malware that steals sensitive data such as a user's private SSH key and bash history, sending them to attacker controlled locations. All versions have been unpublished from the npm registry. Recommendation If you have found cofee-script installed in...

5CVSS4.7AI score0.01177EPSS