Lucene search
+L

36 matches found

osv
osv
added 2026/06/19 11:3 a.m.6 views

SUSE-SU-2026:2467-1 Security update for amazon-ssm-agent

This update for amazon-ssm-agent fixes the following issues Update to version 3.3.4624.0: - CVE-2025-22869: golang.org/x/crypto/ssh: Denial of Service in the Key Exchange of golang.org/x/crypto/ssh bsc1239342. - CVE-2025-22870: golang.org/x/net/proxy: proxy bypass using IPv6 zone IDs bsc1238702. ...

10CVSS7.2AI score0.00868EPSS
Exploits3References31
redhat
redhat
added 2026/04/30 3:33 a.m.19 views

golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS

A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSHAGENTSUCCESS 0x06 message to requests expecting typed replies e.g., List, Sign. The unmarshal layer produces an unexpected message type, which the client code does not handle,...

7.5CVSS6.6AI score0.00632EPSS
Exploits1References8
redhat
redhat
added 2026/04/29 2:31 p.m.10 views

golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS

A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSHAGENTSUCCESS 0x06 message to requests expecting typed replies e.g., List, Sign. The unmarshal layer produces an unexpected message type, which the client code does not handle,...

7.5CVSS6.6AI score0.00632EPSS
Exploits1References8
euvd
euvd
added 2026/04/07 6:31 p.m.4 views

EUVD-2026-19640

A native messaging host vulnerability in Pega Browser Extension PBE affects users of all versions of Pega Robotic Automation who have installed Pega Browser Extension. A bad actor could create a website that contains malicious code that targets PBE. The vulnerability could occur if a user navigat...

6CVSS6AI score0.0026EPSS
Exploits0References2
nvd
nvd
added 2026/04/07 4:16 p.m.8 views

CVE-2026-1079

A native messaging host vulnerability in Pega Browser Extension PBE affects users of all versions of Pega Robotic Automation who have installed Pega Browser Extension. A bad actor could create a website that contains malicious code that targets PBE. The vulnerability could occur if a user navigat...

6CVSS0.0026EPSS
Exploits0References1
cvelist
cvelist
added 2026/04/07 3:17 p.m.18 views

CVE-2026-1079 A native messaging host vulnerability in Pega Browser Extension (PBE) affects users of all versions of Pega Robotic Automation who have installed Pega Browser Extension.

A native messaging host vulnerability in Pega Browser Extension PBE affects users of all versions of Pega Robotic Automation who have installed Pega Browser Extension. A bad actor could create a website that contains malicious code that targets PBE. The vulnerability could occur if a user navigat...

6CVSS0.0026EPSS
Exploits0References1
vulnrichment
vulnrichment
added 2026/04/07 3:17 p.m.3 views

CVE-2026-1079 A native messaging host vulnerability in Pega Browser Extension (PBE) affects users of all versions of Pega Robotic Automation who have installed Pega Browser Extension.

A native messaging host vulnerability in Pega Browser Extension PBE affects users of all versions of Pega Robotic Automation who have installed Pega Browser Extension. A bad actor could create a website that contains malicious code that targets PBE. The vulnerability could occur if a user navigat...

6CVSS6AI score0.0026EPSS
Exploits0References1
ptsecurity
ptsecurity
added 2026/04/07 12:0 a.m.7 views

PT-2026-30847

A native messaging host vulnerability in Pega Browser Extension PBE affects users of all versions of Pega Robotic Automation who have installed Pega Browser Extension. A bad actor could create a website that contains malicious code that targets PBE. The vulnerability could occur if a user navigat...

6CVSS6AI score0.0026EPSS
Exploits0References2
redhat
redhat
added 2026/03/23 2:37 a.m.47 views

golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS

A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSHAGENTSUCCESS 0x06 message to requests expecting typed replies e.g., List, Sign. The unmarshal layer produces an unexpected message type, which the client code does not handle,...

7.5CVSS6.7AI score0.00632EPSS
Exploits1References8
nessus
nessus
added 2026/03/15 12:0 a.m.5 views

openSUSE 16 Security Update : amazon-ssm-agent (openSUSE-SU-2026:20351-1)

The remote openSUSE 16 host has a package installed that is affected by a vulnerability as referenced in the openSUSE- SU-2026:20351-1 advisory. - CVE-2025-47913: client process termination when receiving an unexpected message type in response to a key listing or signing request bsc1253611. Tenab...

7.5CVSS5.9AI score0.00632EPSS
Exploits1References3
osv
osv
added 2026/03/12 1:46 p.m.3 views

OPENSUSE-SU-2026:20351-1 Security update for amazon-ssm-agent

This update for amazon-ssm-agent fixes the following issues: - CVE-2025-47913: client process termination when receiving an unexpected message type in response to a key listing or signing request bsc1253611...

7.5CVSS6.1AI score0.00632EPSS
Exploits1References2
osv
osv
added 2026/03/06 11:34 a.m.3 views

SUSE-SU-2026:20656-1 Security update for docker-compose

This update for docker-compose fixes the following issues: - CVE-2025-47914: non validated message size can cause a panic due to an out of bounds read bsc1254041. - CVE-2025-47913: client process termination when receiving an unexpected message type in response to a key listing or signing request...

8.9CVSS6.8AI score0.13848EPSS
Exploits1References7
osv
osv
added 2026/02/17 8:53 a.m.4 views

SUSE-SU-2026:20451-1 Security update for docker-compose

This update for docker-compose fixes the following issues: - CVE-2025-47914: non validated message size can cause a panic due to an out of bounds read bsc1254041. - CVE-2025-47913: client process termination when receiving an unexpected message type in response to a key listing or signing request...

7.5CVSS6.7AI score0.00632EPSS
Exploits1References5
osv
osv
added 2026/01/22 1:0 p.m.5 views

OPENSUSE-SU-2026:20080-1 Security update for buildah

This update for buildah fixes the following issues: - CVE-2025-47914: golang.org/x/crypto/ssh/agent: Fixed non validated message size causing a panic due to an out of bounds read bsc1254054 - CVE-2025-47913: golang.org/x/crypto/ssh/agent: Fixed client process termination when receiving an...

8.4CVSS6.8AI score0.0067EPSS
Exploits5References8
osv
osv
added 2026/01/20 5:38 p.m.10 views

CLSA-2026-1768930687 podman: Fix of CVE-2025-47913

CVE-2025-47913: fix ssh/agent client panic on unexpected message types...

7.5CVSS6.1AI score0.00632EPSS
Exploits1References1
osv
osv
added 2026/01/19 9:44 a.m.12 views

CLSA-2026-1768815869 buildah: Fix of CVE-2025-47913

CVE-2025-47913: prevent ssh-agent panic by rejecting unexpected message types and returning a descriptive error instead...

7.5CVSS6.6AI score0.00632EPSS
Exploits1References1
redhat
redhat
added 2026/01/14 4:8 a.m.8 views

golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS

A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSHAGENTSUCCESS 0x06 message to requests expecting typed replies e.g., List, Sign. The unmarshal layer produces an unexpected message type, which the client code does not handle,...

7.5CVSS7.2AI score0.00632EPSS
Exploits1References8
redhat
redhat
added 2026/01/12 2:6 a.m.13 views

golang.org/x/crypto/ssh/agent: golang.org/x/crypto/ssh/agent: SSH client panic due to unexpected SSH_AGENT_SUCCESS

A flaw in golang.org/x/crypto/ssh/agent causes the SSH agent client to panic when a peer responds with the generic SSHAGENTSUCCESS 0x06 message to requests expecting typed replies e.g., List, Sign. The unmarshal layer produces an unexpected message type, which the client code does not handle,...

7.5CVSS7.2AI score0.00632EPSS
Exploits1References8
suse
suse
added 2025/12/26 12:24 p.m.6 views

Security update for buildah

This update for buildah fixes the following issues: CVE-2025-47914: golang.org/x/crypto/ssh/agent: Fixed out of bounds read caused by non validated message size bsc1254054 CVE-2025-47913: golang.org/x/crypto/ssh/agent: Fixed client process termination when receiving an unexpected message type in...

8.7CVSS6.9AI score0.00632EPSS
Exploits1References8
osv
osv
added 2025/12/26 12:24 p.m.2 views

SUSE-SU-2025:4526-1 Security update for buildah

This update for buildah fixes the following issues: - CVE-2025-47914: golang.org/x/crypto/ssh/agent: Fixed out of bounds read caused by non validated message size bsc1254054 - CVE-2025-47913: golang.org/x/crypto/ssh/agent: Fixed client process termination when receiving an unexpected message type...

7.5CVSS6.8AI score0.00632EPSS
Exploits1References5
Rows per page
Query Builder