Lucene search
K

14901 matches found

CVE
CVE
added 2021/10/27 6:55 p.m.77 views

CVE-2021-34781

The CVE-2021-34781 issue affects Cisco Firepower Threat Defense (FTD) Software in multi-Instance deployments, where improper error handling during SSH session establishment allows an unauthenticated, remote attacker to trigger resource exhaustion and a DoS condition. Exploitation involves sending...

8.6CVSS7.9AI score0.01346EPSS
Exploits0References1Affected Software3
Tenable Nessus
Tenable Nessus
added 2021/10/27 12:0 a.m.26 views

NewStart CGSL CORE 5.05 / MAIN 5.05 : cloud-init Multiple Vulnerabilities (NS-SA-2021-0151)

The remote NewStart CGSL host, running version CORE 5.05 / MAIN 5.05, has cloud-init packages installed that are affected by multiple vulnerabilities: - The default cloud-init configuration, in cloud-init 0.6.2 and newer, included sshdeletekeys: 0, disabling cloud-init's deletion of ssh host keys...

7.1CVSS6.2AI score0.01403EPSS
Exploits0References9
Tenable Nessus
Tenable Nessus
added 2021/10/21 12:0 a.m.41 views

openSUSE 15 Security Update : ssh-audit (openSUSE-SU-2021:1390-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2021:1390-1 advisory. - OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the...

5.9CVSS6.6AI score0.98631EPSS
Exploits23References3
FreeBSD
FreeBSD
added 2021/10/21 12:0 a.m.18 views

gitea -- multiple vulnerabilities

The Gitea Team reports for release 1.15.5: Upgrade Bluemonday to v1.0.16 17372 17374 Ensure correct SSH permissions check for private and restricted users 17370 17373...

7.1AI score
Exploits0References1
OpenVAS
OpenVAS
added 2021/10/21 12:0 a.m.28 views

Fedora: Security Advisory for openssh (FEDORA-2021-fa0e94198f)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

7CVSS6.6AI score0.02367EPSS
Exploits2References2
OSV
OSV
added 2021/10/20 6:7 p.m.9 views

OPENSUSE-SU-2021:1390-1 Security update for ssh-audit

This update for ssh-audit fixes the following issues: ssh-audit was updated to version 2.5.0 Fixed crash when running host key tests. Handles server connection failures more gracefully. Now prints JSON with indents when -jj is used useful for debugging. Added MD5 fingerprints to verbose output...

5.9CVSS5.7AI score0.98631EPSS
Exploits23References2
OpenVAS
OpenVAS
added 2021/10/20 12:0 a.m.20 views

Ubuntu: Security Advisory (USN-5111-1)

The remote host is missing an update for the SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.7AI score0.06438EPSS
Exploits0References2
OPENSUSE Linux
OPENSUSE Linux
added 2021/10/20 12:0 a.m.83 views

Security update for ssh-audit (moderate)

openSUSE Security Update: Security update for ssh-audit Announcement ID: openSUSE-SU-2021:1390-1 Rating: moderate References: Cross-References: CVE-2018-15473 CVSS scores: CVE-2018-15473 NVD : 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2018-15473 SUSE: 5.8...

5.8CVSS6.8AI score0.98631EPSS
Exploits23
NVD
NVD
added 2021/10/19 7:15 p.m.21 views

CVE-2021-31352

An Information Exposure vulnerability in Juniper Networks SRC Series devices configured for NETCONF over SSH permits the negotiation of weak ciphers, which could allow a remote attacker to obtain sensitive information. A remote attacker with read and write access to network data could exploit thi...

5.3CVSS0.00808EPSS
Exploits1References1
Prion
Prion
added 2021/10/19 7:15 p.m.28 views

Information disclosure

An Information Exposure vulnerability in Juniper Networks SRC Series devices configured for NETCONF over SSH permits the negotiation of weak ciphers, which could allow a remote attacker to obtain sensitive information. A remote attacker with read and write access to network data could exploit thi...

5CVSS5.2AI score0.00808EPSS
Exploits1References1Affected Software1
CVE
CVE
added 2021/10/19 6:16 p.m.60 views

CVE-2021-31352

The CVE describes an Information Exposure in Juniper Networks SRC Series devices when configured for NETCONF over SSH, caused by negotiation of weak ciphers. The vulnerability could allow a remote attacker with read/write access to network data to display plaintext bits from a ciphertext block an...

5.3CVSS5.2AI score0.00808EPSS
Exploits1References1Affected Software1
Cvelist
Cvelist
added 2021/10/19 6:16 p.m.20 views

CVE-2021-31352 SRC Series: NETCONF over SSH allows negotiation of weak ciphers

An Information Exposure vulnerability in Juniper Networks SRC Series devices configured for NETCONF over SSH permits the negotiation of weak ciphers, which could allow a remote attacker to obtain sensitive information. A remote attacker with read and write access to network data could exploit thi...

5.3CVSS5.5AI score0.00808EPSS
Exploits1References1
Positive Technologies
Positive Technologies
added 2021/10/19 12:0 a.m.3 views

PT-2021-19253 · Juniper Networks · Juniper Networks Src Series

Name of the Vulnerable Software and Affected Versions: Juniper Networks SRC Series versions prior to 4.13.0-R6 Description: An Information Exposure issue in Juniper Networks SRC Series devices configured for NETCONF over SSH allows the negotiation of weak ciphers. This could enable a remote...

5.3CVSS5.1AI score0.00808EPSS
Exploits1References2
OpenVAS
OpenVAS
added 2021/10/19 12:0 a.m.23 views

openSUSE: Security Advisory for ssh-audit (openSUSE-SU-2021:1383-1)

The remote host is missing an update for the Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can...

5.9CVSS6.3AI score0.98631EPSS
Exploits23References2
Tenable Nessus
Tenable Nessus
added 2021/10/19 12:0 a.m.45 views

openSUSE 15 Security Update : ssh-audit (openSUSE-SU-2021:1383-1)

The remote SUSE Linux SUSE15 host has a package installed that is affected by a vulnerability as referenced in the openSUSE-SU-2021:1383-1 advisory. - OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the...

5.9CVSS6.6AI score0.98631EPSS
Exploits23References3
OSV
OSV
added 2021/10/18 2:6 p.m.10 views

OPENSUSE-SU-2021:1383-1 Security update for ssh-audit

This update for ssh-audit fixes the following issues: ssh-audit was updated to version 2.5.0 Fixed crash when running host key tests. Handles server connection failures more gracefully. Now prints JSON with indents when -jj is used useful for debugging. Added MD5 fingerprints to verbose output...

5.9CVSS5.9AI score0.98631EPSS
Exploits23References2
OPENSUSE Linux
OPENSUSE Linux
added 2021/10/18 12:0 a.m.72 views

Security update for ssh-audit (moderate)

openSUSE Security Update: Security update for ssh-audit Announcement ID: openSUSE-SU-2021:1383-1 Rating: moderate References: Cross-References: CVE-2018-15473 CVSS scores: CVE-2018-15473 NVD : 5.3 CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N CVE-2018-15473 SUSE: 5.8...

5.8CVSS6.8AI score0.98631EPSS
Exploits23
Kitploit
Kitploit
added 2021/10/17 8:30 p.m.30 views

Fapro - Free, Cross-platform, Single-file mass network protocol server simulator

FaPro is a Fake Protocol Server tool, Can easily start or stop multiple network services. The goal is to support as many protocols as possible, and support as many deep interactions as possible for each protocol. Features Supported Running Modes: Local Machine Virtual Network Supported Protocols:...

7.2AI score
Exploits0References4
RedHat Linux
RedHat Linux
added 2021/10/14 7:43 p.m.134 views

Important: Red Hat Security Advisory: Ansible security and bug fix update (2.9.27)

An update for ansible is now available for Ansible Engine 2 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE link...

5.5CVSS6.9AI score0.00384EPSS
Exploits0References2
RedHat Linux
RedHat Linux
added 2021/10/14 7:42 p.m.44 views

Important: Red Hat Security Advisory: Ansible security and bug fix update (2.9.27)

An update for ansible is now available for Ansible Engine 2.9 Red Hat Product Security has rated this update as having a security impact of Important. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available for each vulnerability from the CVE...

5.5CVSS6.9AI score0.00384EPSS
Exploits0References2
Rows per page
Query Builder