Lucene search
K

18 matches found

GithubExploit
GithubExploit
added 2026/03/22 8:0 a.m.311 views

Exploit for Improper Validation of Integrity Check Value in Openbsd Openssh

SSH Terrapin Attack Vulnerability Scanner CVE-2023-48795 A...

5.9CVSS7AI score0.93305EPSS
Exploits4
Packet Storm News
Packet Storm News
added 2025/09/13 12:0 a.m.5 views

Finding SSH Strict Key Exchange Violations by State Learning

SSH is an important protocol for secure remote shell access to servers on the Internet. At USENIX 2024, B�umer et al. presented the Terrapin attack on SSH, which relies on the attacker injecting optional messages during the key exchange. To mitigate this attack, SSH vendors adopted an extension...

7.9AI score
Exploits0
OSV
OSV
added 2025/05/08 8:15 p.m.5 views

UBUNTU-CVE-2025-46712

Erlang/OTP is a set of libraries for the Erlang programming language. In versions prior to OTP-27.3.4 for OTP-27, OTP-26.2.5.12 for OTP-26, and OTP-25.3.2.21 for OTP-25, Erlang/OTP SSH fails to enforce strict KEX handshake hardening measures by allowing optional messages to be exchanged. This...

3.7CVSS5.7AI score0.0046EPSS
Exploits0References7
OSV
OSV
added 2024/06/19 11:31 a.m.11 views

CLSA-2024-1718796706 openssh: Fix of CVE-2023-48795

CVE-2023-48795: implement "strict key exchange" in ssh and sshd...

5.9CVSS7AI score0.93305EPSS
Exploits4References1
OSV
OSV
added 2024/06/19 10:5 a.m.5 views

CLSA-2024-1718791502 openssh: Fix of CVE-2023-48795

CVE-2023-48795: implement "strict key exchange" in ssh and sshd...

5.9CVSS5.8AI score0.93305EPSS
Exploits4References1
OSV
OSV
added 2024/06/13 2:50 p.m.6 views

CLSA-2024-1718290223 libssh: Fix of CVE-2023-48795

CVE-2023-48795: implement "strict key exchange" mitigations, tests/pkd/pkddaemon.c: relax pthreadkill assert in pkdstop...

5.9CVSS7AI score0.93305EPSS
Exploits4References1
OSV
OSV
added 2024/06/13 2:28 p.m.6 views

CLSA-2024-1718288901 libssh: Fix of CVE-2023-48795

CVE-2023-48795: implement "strict key exchange" mitigations, tests/pkd/pkddaemon.c: relax pthreadkill assert in pkdstop...

5.9CVSS7AI score0.93305EPSS
Exploits4References1
Oracle linux
Oracle linux
added 2024/03/19 12:0 a.m.427 views

openssh security update

7.4p1-23.0.3fips - Change Epoch from 1 to 10 - Enable fips KDF POST Orabug: 32461750 - Disable diffie-hellman-group-exchange-sha256 KEX FIPS method Orabug: 32461739 7.4p1-23.0.3 - add KEXINITIAL flag Orabug: 36160445 - implement 'strict key exchange' CVE-2023-48795Orabug: 36160445...

5.9CVSS7.3AI score0.93305EPSS
Exploits4
Oracle linux
Oracle linux
added 2024/03/18 12:0 a.m.71 views

openssh security update

7.4p1-23.0.3fips - Change Epoch from 1 to 10 - Enable fips KDF POST Orabug: 32461750 - Disable diffie-hellman-group-exchange-sha256 KEX FIPS method Orabug: 32461739 7.4p1-23.0.3 - add KEXINITIAL flag Orabug: 36160445 - implement 'strict key exchange' CVE-2023-48795Orabug: 36160445...

5.9CVSS7.3AI score0.93305EPSS
Exploits4
OSV
OSV
added 2024/02/22 9:49 p.m.16 views

CLSA-2024-1708638566 openssh: Fix of CVE-2023-48795

CVE-2023-48795: implement "strict key exchange" in ssh and sshd...

5.9CVSS7AI score0.93305EPSS
Exploits4References1
OSV
OSV
added 2024/02/14 2:3 p.m.5 views

CLSA-2024-1707919380 openssh: Fix of CVE-2023-48795

CVE-2023-48795: implement "strict key exchange" in ssh and sshd - Moved ELS patches to the top to avoid patch conflicts...

5.9CVSS6.8AI score0.93305EPSS
Exploits4References1
Oracle linux
Oracle linux
added 2024/02/13 12:0 a.m.40 views

openssh security update

7.4p1-23.0.3 - add KEXINITIAL flag Orabug: 36160445 - implement 'strict key exchange' CVE-2023-48795Orabug: 36160445...

5.9CVSS9.8AI score0.93305EPSS
Exploits4
Oracle linux
Oracle linux
added 2024/02/13 12:0 a.m.60 views

openssh security update

7.4p1-23.0.3 - add KEXINITIAL flag Orabug: 36160445 - implement 'strict key exchange' CVE-2023-48795Orabug: 36160445...

5.9CVSS7.3AI score0.93305EPSS
Exploits4
OSV
OSV
added 2024/02/08 7:26 p.m.11 views

CLSA-2024-1707420378 Fix CVE(s): CVE-2023-48795

SECURITY UPDATE: it's possible to remove the initial messages on the secure channel without causing a MAC failure - debian/patches/CVE-2023-48795.patch: implement "strict key exchange" in ssh and sshd - CVE-2023-48795...

5.9CVSS7AI score0.93305EPSS
Exploits4References1
OSV
OSV
added 2024/02/08 7:23 p.m.16 views

CLSA-2024-1707420183 Fix CVE(s): CVE-2023-48795

SECURITY UPDATE: it's possible to remove the initial messages on the secure channel without causing a MAC failure - debian/patches/CVE-2023-48795.patch: implement "strict key exchange" in ssh and sshd - CVE-2023-48795...

5.9CVSS7AI score0.93305EPSS
Exploits4References1
OSV
OSV
added 2024/01/31 7:32 p.m.5 views

OPENSUSE-SU-2024:0036-1 Security update for tinyssh

This update for tinyssh fixes the following issues: tinyssh was updated to 20240101 boo1218197, CVE-2023-48795: fixed channelforkpty race condition between closeslave in parent process and loginttyslave in child process fixed behavior when using terminal mode and stdin redirected to /dev/null 'ss...

5.9CVSS6.4AI score0.93305EPSS
Exploits4References3
OSV
OSV
added 2024/01/08 7:1 p.m.8 views

MGASA-2024-0004 Updated dropbear package fixes a security vulnerability

Parts of the SSH specification are vulnerable to a novel prefix truncation attack a.k.a. Terrapin attack, which allows a man-in-the-middle attacker to strip an arbitrary number of messages right after the initial key exchange, breaking SSH extension negotiation RFC8308 in the process and thus...

5.9CVSS6.6AI score0.93305EPSS
Exploits4References3
OSV
OSV
added 2023/12/18 7:21 p.m.15 views

GHSA-HFMC-7525-MJ55 AsyncSSH vulnerable to Prefix Truncation Attack (a.k.a. Terrapin Attack) against ChaCha20-Poly1305 and Encrypt-then-MAC

Summary AsyncSSH v2.14.1 and earlier is vulnerable to a novel prefix truncation attack a.k.a. Terrapin attack, which allows a man-in-the-middle attacker to strip an arbitrary number of messages right after the initial key exchange, breaking SSH extension negotiation RFC8308 in the process and thu...

5.9CVSS7.4AI score
Exploits0References4
Rows per page
Query Builder