Lucene search
K
Catalog
Vendors
Products
Timeline
Vulnerabilities
Sources
Documentation
Blog
Glossary
FAQ
Brand assets
Assessment
Agents dashboard
Agent Scanning
API Scanning
Assessment API
Alerts
Email notifications
Webhook notifications
Alerts API
SBOM package analysis
API Reference
Support
Settings
Sign in
🔥 Daily Hot!
💪🏽 CPE Enhanced Advisories
🕶 Shadow Exploits
🕵🏼 Vulners CPE
🔐 Security news
💻 Exploit updates
📑 Blogs review
🐧 Linux vulnerabilities
🐞 Bugbounty
🤖 AI High Score
📰 CVE Feed
show all

14823 matches found

CVE
CVEadded 2024/07/04 12:0 a.m.196 views

CVE-2024-39930

CVE-2024-39930 affects the built-in SSH server in Gogs up to version 0.13.0, where argument injection in internal/ssh/ssh.go can lead to remote code execution when an authenticated user opens an SSH session and sends a malicious --split-string env request (Windows builds are unaffected). Public d...

9.9CVSS8.1AI score0.07258EPSS
Exploits3References3Affected Software1
Github Security Blog
Github Security Blogadded 2024/07/03 6:48 p.m.13 views

Missing key verification in gost

An authentication bypass in the SSH service of gost v2.11.5 allows attackers to intercept communications via setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

9.8CVSS7AI score0.00696EPSS
Exploits0References5Affected Software1
OSV
OSVadded 2024/07/03 6:48 p.m.3 views

GHSA-8WXX-35QC-VP6R Missing key verification in gost

An authentication bypass in the SSH service of gost v2.11.5 allows attackers to intercept communications via setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

9.8CVSS9.4AI score0.00696EPSS
Exploits0References5
OSV
OSVadded 2024/07/03 3:15 p.m.14 views

CVE-2024-39223

An authentication bypass in the SSH service of gost v2.11.5 allows attackers to intercept communications via setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

9.8CVSS7.4AI score
Exploits0References3
NVD
NVDadded 2024/07/03 3:15 p.m.11 views

CVE-2024-39223

An authentication bypass in the SSH service of gost v2.11.5 allows attackers to intercept communications via setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

9.8CVSS0.00696EPSS
Exploits0References3
UbuntuCve
UbuntuCveadded 2024/07/03 3:15 p.m.9 views

CVE-2024-39223

An authentication bypass in the SSH service of gost v2.11.5 allows attackers to intercept communications via setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

9.8CVSS7.1AI score0.00696EPSS
Exploits0References4
Akamai Blog
Akamai Blogadded 2024/07/03 10:20 a.m.3 views

Information on OpenSSH "regreSSHion" Vulnerability

...

5.3AI score
Exploits0
GithubExploit
GithubExploitadded 2024/07/03 8:22 a.m.1156 views

Exploit for Race Condition in Openbsd Openssh

CVE-2024-6387 !Screenshot 2024-07-04 182931https://github.c...

8.1CVSS8.9AI score0.99506EPSS
Exploits68
Cvelist
Cvelistadded 2024/07/03 12:0 a.m.16 views

CVE-2024-39223

An authentication bypass in the SSH service of gost v2.11.5 allows attackers to intercept communications via setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

0.00696EPSS
Exploits0References3
Vulnrichment
Vulnrichmentadded 2024/07/03 12:0 a.m.13 views

CVE-2024-39223

An authentication bypass in the SSH service of gost v2.11.5 allows attackers to intercept communications via setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey...

7.2AI score0.00696EPSS
Exploits0References3
Positive Technologies
Positive Technologiesadded 2024/07/03 12:0 a.m.9 views

PT-2024-28396 · Gost +1 · Gost +1

Name of the Vulnerable Software and Affected Versions: gost version 2.11.5 Description: An authentication bypass in the SSH service allows attackers to intercept communications by setting the HostKeyCallback function to ssh.InsecureIgnoreHostKey. This issue is related to missing key verification ...

9.9CVSS6.3AI score0.97781EPSS
Exploits20References141
CVE
CVEadded 2024/07/03 12:0 a.m.89 views

CVE-2024-39223

CVE-2024-39223 affects gost v2.11.5, where the SSH service can be compromised via an authentication bypass by configuring the HostKeyCallback to ssh.InsecureIgnoreHostKey. The Red Hat advisory reiterates the vulnerability description and references the same affected version, noting an authenticat...

9.8CVSS7.2AI score0.00696EPSS
Exploits0References3
Tenable Nessus
Tenable Nessusadded 2024/07/03 12:0 a.m.17 views

CBL Mariner 2.0 Security Update: xorg-x11-server (CVE-2024-21885)

The version of xorg-x11-server installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2024-21885 advisory. - A flaw was found in X.Org server. In the XISendDeviceHierarchyEvent function, it is possible to...

7.8CVSS6.8AI score0.0142EPSS
Exploits0References2
AlmaLinux
AlmaLinuxadded 2024/07/03 12:0 a.m.55 views

Important: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: openssh: Possible remote code execution due to a race condition in signal handling...

8.1CVSS7.9AI score0.99506EPSS
Exploits68References4
Tenable Nessus
Tenable Nessusadded 2024/07/03 12:0 a.m.26 views

CBL Mariner 2.0 Security Update: cert-manager / cf-cli / docker-buildx / erlang / kubernetes / kubevirt (CVE-2023-48795)

The version of cert-manager / cf-cli / docker-buildx / erlang / kubernetes / kubevirt installed on the remote CBL Mariner 2.0 host is prior to tested version. It is, therefore, affected by a vulnerability as referenced in the CVE-2023-48795 advisory. - The SSH transport protocol with certain...

5.9CVSS7.1AI score0.93305EPSS
Exploits4References2
GithubExploit
GithubExploitadded 2024/07/02 9:47 p.m.936 views

Exploit for Race Condition in Openbsd Openssh

CVE-2024-6387-Checker This tool scans your network for hosts...

8.1CVSS8.3AI score0.99506EPSS
Exploits68
Fedora
Fedoraadded 2024/07/02 8:16 p.m.164 views

[SECURITY] Fedora 40 Update: openssh-9.6p1-1.fc40.4

SSH Secure SHell is a program for logging into and executing commands on a remote machine. SSH is intended to replace rlogin and rsh, and to provide secure encrypted communications between two untrusted hosts over an insecure network. X11 connections and arbitrary TCP/IP ports can also be forward...

8.1CVSS8.3AI score0.99506EPSS
Exploits68
OSV
OSVadded 2024/07/02 6:10 p.m.4 views

CLSA-2024-1719943814 curl: Fix of 2 CVEs

CVE-2023-27538: url: fix the SSH connection reuse check - CVE-2023-27536: url: only reuse connections with same GSS delegation...

7.7CVSS6.7AI score0.01566EPSS
Exploits2References1
GithubExploit
GithubExploitadded 2024/07/02 4:34 p.m.1210 views

Exploit for Race Condition in Openbsd Openssh

CVE-2024-6387-Exploit-POC Este repositorio contiene un Proof...

8.1CVSS8.3AI score0.99506EPSS
Exploits68
GithubExploit
GithubExploitadded 2024/07/02 11:55 a.m.171 views

Exploit for Race Condition in Openbsd Openssh

CVE-2024-6387 Checker CVE-2024-6387 Checker is a fast, effici...

8.1CVSS7.1AI score0.99506EPSS
Exploits68
Rows per page
Query Builder