CVE-2023-42818

JumpServer is an open source bastion host. When users enable MFA and use a public key for authentication, the Koko SSH server does not verify the corresponding SSH private key. An attacker could exploit a vulnerability by utilizing a disclosed public key to attempt brute-force authentication...

CVE-2023-43652

JumpServer is an open source bastion host. As an unauthenticated user, it is possible to authenticate to the core API with a username and an SSH public key without needing a password or the corresponding SSH private key. An SSH public key should be considered public knowledge and should not used ...

golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh

A flaw was found in the golang.org/x/crypto/ssh package. SSH clients and servers are vulnerable to increased resource consumption, possibly leading to memory exhaustion and a DoS. This can occur during key exchange when the other party is slow to respond during key exchange...

CVE-2024-45481

An Incomplete Filtering of Special Elements vulnerability in scripts using the SSH server on B&R APROL 4.4-00P5 may allow an authenticated local attacker to authenticate as another legitimate user...

CVE-2024-45482

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the SSH server on B&R APROL 4.4-00P1 may allow an authenticated local attacker from a trusted remote server to execute malicious commands...

CVE-2024-45482 Privilege escalation in B&R APROL

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the SSH server on B&R APROL 4.4-00P1 may allow an authenticated local attacker from a trusted remote server to execute malicious commands...

CVE-2024-45482 Privilege escalation in B&R APROL

An Inclusion of Functionality from Untrusted Control Sphere vulnerability in the SSH server on B&R APROL 4.4-00P1 may allow an authenticated local attacker from a trusted remote server to execute malicious commands...

CVE-2024-45482

CVE-2024-45482 concerns the B&R APROL product. The SSH server in APROL versions prior to 4.4-00P1 may allow an authenticated local attacker from a trusted remote server to execute malicious commands due to an Inclusion of Functionality from an Untrusted Control Sphere vulnerability. Affected prod...

CVE-2024-45481 Improper authentication in SSH of B&R APROL

An Incomplete Filtering of Special Elements vulnerability in scripts using the SSH server on B&R APROL 4.4-00P5 may allow an authenticated local attacker to authenticate as another legitimate user...

CVE-2024-45481 Improper authentication in SSH of B&R APROL

An Incomplete Filtering of Special Elements vulnerability in scripts using the SSH server on B&R APROL 4.4-00P5 may allow an authenticated local attacker to authenticate as another legitimate user...

CVE-2024-45481

CVE-2024-45481 affects the SSH server in B&R APROL prior to 4.4-00P5. The vulnerability is due to incomplete filtering of special elements in scripts, enabling an authenticated local attacker to authenticate as another legitimate user. CVSS 4.0 vector indicates Local access, Low privileges requir...

CLSA-2025-1742661734 openssh: Fix of CVE-2025-26465

CVE-2025-26465: fix vulnerability in OpenSSH when the VerifyHostKeyDNS option is enabled...

CVE-2024-12866

A local file inclusion vulnerability exists in netease-youdao/qanything version v2.0.0. This vulnerability allows an attacker to read arbitrary files on the file system, which can lead to remote code execution by retrieving private SSH keys, reading private files, source code, and configuration...

CVE-2024-10831

In eosphoros-ai/db-gpt version 0.6.0, the endpoint for uploading files is vulnerable to absolute path traversal. This vulnerability allows an attacker to upload arbitrary files to arbitrary locations on the target server. The issue arises because the filekey and docfile.filename parameters are...

CVE-2024-10834

eosphoros-ai/db-gpt version 0.6.0 contains a vulnerability in the RAG-knowledge endpoint that allows for arbitrary file write. The issue arises from the ability to pass an absolute path to a call to os.path.join, enabling an attacker to write files to arbitrary locations on the target server. Thi...

OESA-2025-1315 openssh security update

OpenSSH is the premier connectivity tool for remote login with the SSH protocol. \ It encrypts all traffic to eliminate eavesdropping, connection hijacking, and \ other attacks. In addition, OpenSSH provides a large suite of secure tunneling \ capabilities, several authentication methods, and...

[SECURITY] Fedora 42 Update: openssh-9.9p1-9.fc42

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

CVE-2025-30234

SmartOS, as used in Triton Data Center and other products, has static host SSH keys in the 60f76fd2-143f-4f57-819b-1ae32684e81b image a Debian 12 LX zone image from 2024-07-26...

PT-2025-16942 · Google · Google Cloud Platform

Name of the Vulnerable Software and Affected Versions: Google Cloud Platform affected versions not specified Description: The issue allows an attacker with knowledge of creating user accounts during VM deployment on Google Cloud Platform GCP using the OS Login feature to login via SSH, gaining...

Devolutions Server <= 2024.3.13 Multiple Vulnerabilities (DEVO-2025-0004)

The version of Devolutions Server installed on the remote host is prior or equal to 2024.3.13 and is, therefore, affected by multiple vulnerabilities: - Exposure of password in web-based SSH authentication component in Devolutions Server 2024.3.13 and earlier allows a user to unadvertently leak h...