Lucene search
K

14901 matches found

The Hacker News
The Hacker News
added 2021/09/04 7:50 a.m.65 views

Microsoft Says Chinese Hackers Were Behind SolarWinds Serv-U SSH 0-Day Attack

Microsoft has shared technical details about a now-fixed, actively exploited critical security vulnerability affecting SolarWinds Serv-U managed file transfer service that it has attributed with "high confidence" to a threat actor operating out of China. In mid-July, the Texas-based company...

10CVSS0.5AI score0.9116EPSS
Exploits2
Microsoft Malware Protection
Microsoft Malware Protection
added 2021/09/02 4:0 p.m.89 views

A deep-dive into the SolarWinds Serv-U SSH vulnerability

Several weeks ago, Microsoft detected a 0-day remote code execution exploit being used to attack the SolarWinds Serv-U FTP software in limited and targeted attacks. The Microsoft Threat Intelligence Center MSTIC attributed the attack with high confidence to DEV-0322, a group operating out of Chin...

10CVSS10AI score0.9116EPSS
Exploits2
Microsoft Secure
Microsoft Secure
added 2021/09/02 4:0 p.m.157 views

A deep-dive into the SolarWinds Serv-U SSH vulnerability

Several weeks ago, Microsoft detected a 0-day remote code execution exploit being used to attack the SolarWinds Serv-U FTP software in limited and targeted attacks. The Microsoft Threat Intelligence Center MSTIC attributed the attack with high confidence to DEV-0322, a group operating out of Chin...

10CVSS10AI score0.9116EPSS
Exploits2
CNVD
CNVD
added 2021/09/02 12:0 a.m.31 views

libssh buffer overflow vulnerability (CNVD-2021-71262)

Libssh is a C development package from the Libssh organization for accessing SSH services, which can execute remote commands, file transfers, and provide a secure transport channel for remote programs. libssh is vulnerable to a buffer overflow vulnerability, which stems from the fact that libssh...

6.5CVSS3.1AI score0.04683EPSS
Exploits0References1
OpenVAS
OpenVAS
added 2021/09/02 12:0 a.m.20 views

SSH File Transfer Protocol (SFTP) / Subsystem Detection (SSH Login)

SSH login-based detection of services supporting the SSH File Transfer Protocol SFTP, also known as Secure File Transfer Protocol / subsystem. SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right...

5.8AI score
Exploits0References5
BDU FSTEC
BDU FSTEC
added 2021/09/01 12:0 a.m.7 views

The vulnerability of microprogrammed software in industrial modems of the OnCell G3470A-LTE Series and WDR-3124A Series, as well as in microprogrammed software for Wi-Fi routers of the TAP-323 Series, WAC-1001 Series, and WAC-2004 Series, arises from the use of non-unique X.509 certificates and host SSH keys. This vulnerability allows attackers to escalate their privileges.

The vulnerabilities of microprogrammed software in industrial modems of the OnCell G3470A-LTE Series, WDR-3124A Series, microprogrammed software in Wi-Fi routers of the TAP-323 Series, WAC-1001 Series, and WAC-2004 Series are related to the use of non-unique X.509 certificates and host SSH keys...

10CVSS5.5AI score
Exploits0References2Affected Software5
NVD
NVD
added 2021/08/31 5:15 p.m.19 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS0.04683EPSS
Exploits0References8
Prion
Prion
added 2021/08/31 5:15 p.m.26 views

Design/Logic Flaw

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

4CVSS7.3AI score0.04683EPSS
Exploits0References8Affected Software6
NVD
NVD
added 2021/08/31 11:15 a.m.12 views

CVE-2021-34565

In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials...

9.8CVSS0.0103EPSS
Exploits0References1
Prion
Prion
added 2021/08/31 11:15 a.m.13 views

Hardcoded credentials

In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials...

7.5CVSS9.4AI score0.0103EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/08/31 10:33 a.m.21 views

CVE-2021-34565 In WirelessHART-Gateway versions 3.0.7 to 3.0.9 hard-coded credentials have been found

In PEPPERL+FUCHS WirelessHART-Gateway 3.0.7 to 3.0.9 the SSH and telnet services are active with hard-coded credentials...

9.8CVSS9.6AI score0.0103EPSS
Exploits0References1
CVE
CVE
added 2021/08/31 10:33 a.m.51 views

CVE-2021-34565

The CVE-2021-34565 vulnerability affects Pepperl+Fuchs WirelessHART-Gateway versions 3.0.7–3.0.9, where SSH and Telnet services run with hard-coded credentials. This is reported with high impact: remote access to the gateway could be obtained (CVSS v3.1 base score 9.8). Public advisories (ICS/CIS...

9.8CVSS9.5AI score0.0103EPSS
Exploits0References1Affected Software1
RedHat Linux
RedHat Linux
added 2021/08/31 9:24 a.m.35 views

Moderate: Red Hat Security Advisory: cloud-init security update

An update for cloud-init is now available for Red Hat Enterprise Linux 8.2 Extended Update Support. Red Hat Product Security has rated this update as having a security impact of Moderate. A Common Vulnerability Scoring System CVSS base score, which gives a detailed severity rating, is available f...

5.5CVSS6.1AI score0.00219EPSS
Exploits0References2
AlpineLinux
AlpineLinux
added 2021/08/31 12:0 a.m.31 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS6.9AI score0.04683EPSS
Exploits0
Positive Technologies
Positive Technologies
added 2021/08/31 12:0 a.m.4 views

PT-2021-20550 · Pepperl+Fuchs · Wirelesshart Gateway

Name of the Vulnerable Software and Affected Versions: PEPPERL+FUCHS WirelessHART-Gateway versions 3.0.7 through 3.0.9 Description: The issue concerns hard-coded credentials in the SSH and telnet services of the affected device. Recommendations: For versions 3.0.7 through 3.0.9, consider disablin...

9.8CVSS6.8AI score0.0103EPSS
Exploits0References3
Debian CVE
Debian CVE
added 2021/08/31 12:0 a.m.47 views

CVE-2021-3634

A flaw has been found in libssh in versions prior to 0.9.6. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept...

6.5CVSS6.2AI score0.04683EPSS
Exploits0
CNNVD
CNNVD
added 2021/08/30 12:0 a.m.2 views

GNU Midnight Commander 授权问题漏洞

GNU Midnight Commander is a visual file manager. A security vulnerability exists in Midnight Commander that stems from the fact that starting with version 4.8.26, the server's fingerprint is neither checked nor displayed when Midnight Commander establishes an SFTP connection. An attacker could us...

7.5CVSS7.2AI score0.02216EPSS
Exploits1References7
RedhatCVE
RedhatCVE
added 2021/08/26 1:32 p.m.41 views

CVE-2021-3634

A flaw has been found in libssh. The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept and used as an input to new...

6.5CVSS1.7AI score0.04683EPSS
Exploits0References3
FreeBSD
FreeBSD
added 2021/08/26 12:0 a.m.32 views

libssh -- possible heap-buffer overflow vulnerability

libssh security advisories: The SSH protocol keeps track of two shared secrets during the lifetime of the session. One of them is called secrethash and and the other sessionid. Initially, both of them are the same, but after key re-exchange, previous sessionid is kept and used as an input to new...

6.5CVSS2.4AI score0.04683EPSS
Exploits0References2
CNVD
CNVD
added 2021/08/26 12:0 a.m.17 views

Cisco UCS Manager Denial of Service Vulnerability (CNVD-2021-68726)

A denial-of-service vulnerability exists in the way Cisco UCS Manager handles SSH sessions, which can be exploited by an attacker to open a large number of SSH sessions to cause the internal Cisco UCS Manager software process to crash and restart...

4.3CVSS2.4AI score0.01032EPSS
Exploits0References1
Rows per page
Query Builder