Lucene search
K

14907 matches found

NVD
NVD
added 2021/03/15 3:15 p.m.14 views

CVE-2021-27891

SSH Tectia Client and Server before 6.4.19 on Windows have weak key generation. ConnectSecure on Windows is affected...

8.8CVSS0.01039EPSS
Exploits0References1
Prion
Prion
added 2021/03/15 3:15 p.m.17 views

Information disclosure

SSH Tectia Client and Server before 6.4.19 on Windows have weak key generation. ConnectSecure on Windows is affected...

6.5CVSS8.5AI score0.01039EPSS
Exploits0References1Affected Software2
Prion
Prion
added 2021/03/15 3:15 p.m.14 views

Design/Logic Flaw

SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation in nonstandard conditions. ConnectSecure on Windows is affected...

4.4CVSS6.9AI score0.00381EPSS
Exploits0References1Affected Software2
Cvelist
Cvelist
added 2021/03/15 2:8 p.m.14 views

CVE-2021-27892

SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation. ConnectSecure on Windows is affected...

7.7AI score0.00251EPSS
Exploits0References1
CVE
CVE
added 2021/03/15 2:8 p.m.42 views

CVE-2021-27892

CVE-2021-27892 affects SSH Tectia Client and Server on Windows (before 6.4.19) and ConnectSecure on Windows. The issue is a local privilege escalation. CVSS details in the initial data show CVSS‑v3.1 base score 7.8 (LOCAL, Privileges Required: LOW, User Interaction: NONE; Confidentiality/Integrit...

7.8CVSS7.4AI score0.00251EPSS
Exploits0References1Affected Software3
CVE
CVE
added 2021/03/15 2:7 p.m.52 views

CVE-2021-27891

CVE-2021-27891 affects SSH Tectia Client and Server prior to 6.4.19 on Windows and ConnectSecure on Windows, due to weak key generation. Affected components: SSH Tectia Client/Server on Windows. Root cause: weak key generation in the cryptographic setup. Impact per NVD CVSS: CVSS v3.1 base score ...

8.8CVSS8.4AI score0.01039EPSS
Exploits0References1Affected Software3
Cvelist
Cvelist
added 2021/03/15 2:7 p.m.15 views

CVE-2021-27891

SSH Tectia Client and Server before 6.4.19 on Windows have weak key generation. ConnectSecure on Windows is affected...

8.7AI score0.01039EPSS
Exploits0References1
CVE
CVE
added 2021/03/15 2:5 p.m.51 views

CVE-2021-27893

CVE-2021-27893 : SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation in nonstandard conditions; ConnectSecure on Windows is affected. The provided documents do not disclose root cause details, vulnerable components, specific product versions beyond the 6.4.19 th...

7CVSS6.9AI score0.00381EPSS
Exploits0References1Affected Software3
OpenVAS
OpenVAS
added 2021/03/15 12:0 a.m.7 views

SYS.2.3.A1

Administratoren DUERFEN sich NICHT im Normalbetrieb als SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.3AI score
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2021/03/15 12:0 a.m.29 views

openSUSE Security Update : crmsh (openSUSE-2021-410)

This update for crmsh fixes the following issues : - Update to version 4.3.0+20210305.9db5c9a8 : - Fix: bootstrap: Adjust qdevice configure/remove process to avoid race condition due to quorum lostbsc1181415 - Dev: cibconfig: remove related code about detecting crmdiff support --no-verion - Fix:...

8.8CVSS7.7AI score0.00994EPSS
Exploits1References11
ArchLinux
ArchLinux
added 2021/03/13 12:0 a.m.305 views

[ASA-202103-6] openssh: arbitrary code execution

Arch Linux Security Advisory ASA-202103-6 ========================================= Severity: Medium Date : 2021-03-13 CVE-ID : CVE-2021-28041 Package : openssh Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-1657 Summary ======= The package openssh before...

7.1CVSS2.3AI score0.03422EPSS
Exploits1References5
OSV
OSV
added 2021/03/12 4:43 p.m.2 views

SUSE-SU-2021:0781-1 Security update for crmsh

This update for crmsh fixes the following issues: - Update to version 4.3.0+20210305.9db5c9a8: Fix: bootstrap: Adjust qdevice configure/remove process to avoid race condition due to quorum lostbsc1181415 Dev: cibconfig: remove related code about detecting crmdiff support --no-verion Fix:...

8.8CVSS7.9AI score0.00994EPSS
Exploits1References12
OpenVAS
OpenVAS
added 2021/03/12 12:0 a.m.31 views

OpenSSL Detection (SSH)

SSH based detection of OpenSSL. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/o...

7.3AI score
Exploits0
OpenVAS
OpenVAS
added 2021/03/12 12:0 a.m.10 views

Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2021-1648)

The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...

7.5CVSS7.9AI score0.03028EPSS
Exploits1References2
OSV
OSV
added 2021/03/11 7:25 p.m.3 views

SUSE-SU-2021:0771-1 Security update for crmsh

This update for crmsh fixes the following issues: - Update to version 3.0.4+git.1614156978.4c1dc46d: Fix: hbreport: walk through hbreport process under haclusterCVE-2020-35459, bsc1179999; CVE-2021-3020, bsc1180571 Fix: bootstrap: setup authorized ssh access for haclusterCVE-2020-35459, bsc117999...

8.8CVSS7.9AI score0.00994EPSS
Exploits1References8
Ubuntu
Ubuntu
added 2021/03/10 2:30 p.m.2850 views

USN-4762-1: OpenSSH vulnerability

It was discovered that the OpenSSH ssh-agent incorrectly handled memory. A remote attacker able to connect to the agent could use this issue to cause it to crash, resulting in a denial of service, or possibly execute arbitrary code...

7.1CVSS7.3AI score0.03422EPSS
Exploits1
OSV
OSV
added 2021/03/10 2:30 p.m.7 views

USN-4762-1 openssh vulnerability

It was discovered that the OpenSSH ssh-agent incorrectly handled memory. A remote attacker able to connect to the agent could use this issue to cause it to crash, resulting in a denial of service, or possibly execute arbitrary code...

7.1CVSS7.1AI score0.03422EPSS
Exploits1References2
Microsoft CVE
Microsoft CVE
added 2021/03/10 8:0 a.m.4 views

ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios such as unconstrained agent-socket access on a legacy operating system or the forwarding of an agent to an attacker-controlled host.

...

7.1CVSS7AI score0.03422EPSS
Exploits1
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.26 views

NewStart CGSL MAIN 6.02 : python-pip Vulnerability (NS-SA-2021-0081)

The remote NewStart CGSL host, running version MAIN 6.02, has python-pip packages installed that are affected by a vulnerability: - The pip package before 19.2 for Python allows Directory Traversal when a URL is given in an install command, because a Content-Disposition header can have ../ in a...

7.5CVSS7.4AI score0.03028EPSS
Exploits1References2
Tenable Nessus
Tenable Nessus
added 2021/03/10 12:0 a.m.18 views

NewStart CGSL MAIN 6.02 : cloud-init Vulnerability (NS-SA-2021-0051)

The remote NewStart CGSL host, running version MAIN 6.02, has cloud-init packages installed that are affected by a vulnerability: - The default cloud-init configuration, in cloud-init 0.6.2 and newer, included sshdeletekeys: 0, disabling cloud-init's deletion of ssh host keys. In some environment...

7.1CVSS5.7AI score0.00354EPSS
Exploits0References2
Rows per page
Query Builder