CVE Search Engine - Security Vulnerabilities and Exploits Search Tool

show all

5 matches found

Snyk•added 2025/08/09 2:41 a.m.•3 views

Information Exposure

Overview Affected versions of this package are vulnerable to Information Exposure via the pathLogin function in the userpass/pathlogin.go file. An attacker can determine whether a username exists by measuring the response time difference between authentication attempts for existing and non-existi...

6.3CVSS7AI score0.00052EPSS

Exploits0References2

Tenable Nessus•added 2017/04/20 12:0 a.m.•12 views

h.225.0 Username Detection

Binary data 7270.pasl...

7.3AI score

Exploits0

Tenable Nessus•added 2016/10/12 12:0 a.m.•11 views

Print Job Requested - Username Detection

Binary data 9661.prm...

7.3AI score

Exploits0References1

RedhatCVE•added 2015/10/30 10:28 a.m.•25 views

CVE-2006-5229

OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under limited configurations, allows remote attackers to determine valid usernames via timing discrepancies in which responses take longer for valid usernames than invalid ones, as demonstrated by sshtime...

2.6CVSS7.4AI score0.56627EPSS

Exploits9References2

CVE•added 2006/10/10 11:0 p.m.•74 views

CVE-2006-5229

OpenSSH portable 4.1 on SUSE Linux and possibly other platforms is affected by a timing-attack vulnerability (CVE-2006-5229) that lets remote attackers infer valid usernames based on response time differences. The issue, demonstrated by sshtime, is tied to how certain configurations and manually-...

2.6CVSS6.6AI score0.56627EPSS

Exploits9References9Affected Software1

Rows per page

Query Builder

Family

Bulletin Type

Min CVSS Score

Date

Order by