Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2026/06/27 12:0 a.m.6 views

EulerOS 2.0 SP15 : openssh (EulerOS-SA-2026-2496)

According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : OpenSSH before 10.3 omits connection multiplexing confirmation for proxy-mode multiplexing sessions.CVE-2026-35388 OpenSSH before 10.3 mishandles...

8.2CVSS7.4AI score0.0218EPSS
Exploits0References7
OSV
OSV
added 2026/05/29 4:3 p.m.11 views

RLSA-2026:19069 Important: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode...

7.5CVSS6.2AI score0.00419EPSS
Exploits0References6
Tenable Nessus
Tenable Nessus
added 2026/05/07 12:0 a.m.11 views

MiracleLinux 8 : openssh-8.0p1-29.el8_10 (AXSA:2026-554:03)

The remote MiracleLinux 8 host has packages installed that are affected by multiple vulnerabilities as referenced in the AXSA:2026-554:03 advisory. OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode CVE-2026-35385 OpenSSH: OpenSSH: Security bypass via...

8.1CVSS6.2AI score0.00419EPSS
Exploits0References6
OSV
OSV
added 2026/05/04 12:0 a.m.7 views

ALSA-2026:13383 Important: openssh security update

OpenSSH is an SSH protocol implementation supported by a number of Linux, UNIX, and similar operating systems. It includes the core files necessary for both the OpenSSH client and server. Security Fixes: OpenSSH: OpenSSH: Privilege escalation via scp legacy protocol when not preserving file mode...

8.1CVSS6.2AI score0.00419EPSS
Exploits0References12
OSV
OSV
added 2026/04/17 1:2 p.m.10 views

OESA-2026-1963 openssh security update

An open source implementation of SSH protocol version 2 Security Fixes: Vulnerability in the OpenSSH GSSAPI delta included in various Linux distributions. This vulnerability affects the GSSAPI patches added by various Linux distributions and does not affect the OpenSSH upstream project itself. Th...

8.2CVSS6.8AI score0.0218EPSS
Exploits0References7
NVD
NVD
added 2024/05/03 2:15 a.m.22 views

CVE-2023-34276

D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2150 routers. Although authentication is required to exploit this...

8CVSS7.2AI score0.0176EPSS
Exploits0References1
Vulnrichment
Vulnrichment
added 2024/05/03 1:57 a.m.18 views

CVE-2023-34276 D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution Vulnerability

D-Link DIR-2150 SetTriggerPPPoEValidate Username Command Injection Remote Code Execution Vulnerability. This vulnerability allows network-adjacent attackers to execute arbitrary code on affected installations of D-Link DIR-2150 routers. Although authentication is required to exploit this...

6.8CVSS8.1AI score0.0176EPSS
Exploits0References1
Tenable Nessus
Tenable Nessus
added 2020/04/21 12:0 a.m.46 views

IBM Spectrum Protect Plus username Command Injection

The IBM Spectrum Protect Plus administrative console running on the remote host is affected by a remote command injection vulnerability due to improper validation of user-supplied data when processing a login HTTP request. An unauthenticated, remote attacker can exploit this, via a specially...

10CVSS8.8AI score0.15491EPSS
Exploits0References2
Zero Day Initiative
Zero Day Initiative
added 2020/03/05 12:0 a.m.24 views

IBM Spectrum Protect Plus username Command Injection Remote Code Execution Vulnerability

This vulnerability allows remote attackers to execute arbitrary code on affected installations of IBM Spectrum Protect Plus. Authentication is not required to exploit this vulnerability. The specific flaw exists within the Administrative Console Framework service. When parsing the username...

9.8CVSS6AI score0.15491EPSS
Exploits0References1
0day.today
0day.today
added 2018/04/04 12:0 a.m.44 views

Moxa AWK-3131A 1.4 < 1.7 - Username OS Command Injection Exploit

Exploit for hardware platform in category remote exploits !/usr/bin/env python2 import telnetlib import re import random import string Split string into chunks, of which each is /var/a' - 1 completed = temp = re.split'\n', script for content in temp: if lencontent != 0: for s in re.split' ',...

9.7AI score0.12169EPSS
Exploits1
Packet Storm
Packet Storm
added 2013/06/23 12:0 a.m.20 views

ZPanel 10.0.0.2 htpasswd Module Username Command Execution

This file is part of the Metasploit Framework and may be subject to redistribution and commercial restrictions. Please see the Metasploit Framework web site for more information on licensing and terms of use. http://metasploit.com/framework/ require 'msf/core' class Metasploit3 "ZPanel 10.0.0.2...

7.4AI score
Exploits0
Rows per page
Query Builder