14907 matches found
CVE-2021-27891
SSH Tectia Client and Server before 6.4.19 on Windows have weak key generation. ConnectSecure on Windows is affected...
Information disclosure
SSH Tectia Client and Server before 6.4.19 on Windows have weak key generation. ConnectSecure on Windows is affected...
Design/Logic Flaw
SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation in nonstandard conditions. ConnectSecure on Windows is affected...
CVE-2021-27892
SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation. ConnectSecure on Windows is affected...
CVE-2021-27892
CVE-2021-27892 affects SSH Tectia Client and Server on Windows (before 6.4.19) and ConnectSecure on Windows. The issue is a local privilege escalation. CVSS details in the initial data show CVSS‑v3.1 base score 7.8 (LOCAL, Privileges Required: LOW, User Interaction: NONE; Confidentiality/Integrit...
CVE-2021-27891
CVE-2021-27891 affects SSH Tectia Client and Server prior to 6.4.19 on Windows and ConnectSecure on Windows, due to weak key generation. Affected components: SSH Tectia Client/Server on Windows. Root cause: weak key generation in the cryptographic setup. Impact per NVD CVSS: CVSS v3.1 base score ...
CVE-2021-27891
SSH Tectia Client and Server before 6.4.19 on Windows have weak key generation. ConnectSecure on Windows is affected...
CVE-2021-27893
CVE-2021-27893 : SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation in nonstandard conditions; ConnectSecure on Windows is affected. The provided documents do not disclose root cause details, vulnerable components, specific product versions beyond the 6.4.19 th...
SYS.2.3.A1
Administratoren DUERFEN sich NICHT im Normalbetrieb als SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
openSUSE Security Update : crmsh (openSUSE-2021-410)
This update for crmsh fixes the following issues : - Update to version 4.3.0+20210305.9db5c9a8 : - Fix: bootstrap: Adjust qdevice configure/remove process to avoid race condition due to quorum lostbsc1181415 - Dev: cibconfig: remove related code about detecting crmdiff support --no-verion - Fix:...
[ASA-202103-6] openssh: arbitrary code execution
Arch Linux Security Advisory ASA-202103-6 ========================================= Severity: Medium Date : 2021-03-13 CVE-ID : CVE-2021-28041 Package : openssh Type : arbitrary code execution Remote : Yes Link : https://security.archlinux.org/AVG-1657 Summary ======= The package openssh before...
SUSE-SU-2021:0781-1 Security update for crmsh
This update for crmsh fixes the following issues: - Update to version 4.3.0+20210305.9db5c9a8: Fix: bootstrap: Adjust qdevice configure/remove process to avoid race condition due to quorum lostbsc1181415 Dev: cibconfig: remove related code about detecting crmdiff support --no-verion Fix:...
OpenSSL Detection (SSH)
SSH based detection of OpenSSL. Copyright C 2021 Greenbone Networks GmbH Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-or-later This program is free software; you can redistribute it and/o...
Huawei EulerOS: Security Advisory for python-pip (EulerOS-SA-2021-1648)
The remote host is missing an update for the Huawei EulerOS SPDX-FileCopyrightText: 2021 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only ifdescription...
SUSE-SU-2021:0771-1 Security update for crmsh
This update for crmsh fixes the following issues: - Update to version 3.0.4+git.1614156978.4c1dc46d: Fix: hbreport: walk through hbreport process under haclusterCVE-2020-35459, bsc1179999; CVE-2021-3020, bsc1180571 Fix: bootstrap: setup authorized ssh access for haclusterCVE-2020-35459, bsc117999...
USN-4762-1: OpenSSH vulnerability
It was discovered that the OpenSSH ssh-agent incorrectly handled memory. A remote attacker able to connect to the agent could use this issue to cause it to crash, resulting in a denial of service, or possibly execute arbitrary code...
USN-4762-1 openssh vulnerability
It was discovered that the OpenSSH ssh-agent incorrectly handled memory. A remote attacker able to connect to the agent could use this issue to cause it to crash, resulting in a denial of service, or possibly execute arbitrary code...
ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios such as unconstrained agent-socket access on a legacy operating system or the forwarding of an agent to an attacker-controlled host.
...
NewStart CGSL MAIN 6.02 : python-pip Vulnerability (NS-SA-2021-0081)
The remote NewStart CGSL host, running version MAIN 6.02, has python-pip packages installed that are affected by a vulnerability: - The pip package before 19.2 for Python allows Directory Traversal when a URL is given in an install command, because a Content-Disposition header can have ../ in a...
NewStart CGSL MAIN 6.02 : cloud-init Vulnerability (NS-SA-2021-0051)
The remote NewStart CGSL host, running version MAIN 6.02, has cloud-init packages installed that are affected by a vulnerability: - The default cloud-init configuration, in cloud-init 0.6.2 and newer, included sshdeletekeys: 0, disabling cloud-init's deletion of ssh host keys. In some environment...