Lucene search
K

11 matches found

Tenable Nessus
Tenable Nessus
added 2025/05/12 12:0 a.m.7 views

EulerOS 2.0 SP10 : openssh (EulerOS-SA-2025-1530)

According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious...

6.8CVSS7AI score0.06997EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2025/05/06 12:0 a.m.4 views

EulerOS 2.0 SP12 : openssh (EulerOS-SA-2025-1429)

According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious...

6.8CVSS7AI score0.06997EPSS
Exploits4References2
Tenable Nessus
Tenable Nessus
added 2025/04/11 12:0 a.m.13 views

EulerOS 2.0 SP11 : openssh (EulerOS-SA-2025-1368)

According to the versions of the openssh packages installed, the EulerOS installation on the remote host is affected by the following vulnerabilities : A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious...

6.8CVSS7AI score0.06997EPSS
Exploits4References2
Amazon
Amazon
added 2025/03/06 12:0 a.m.28 views

Medium: openssh

Issue Overview: A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying...

6.8CVSS7AI score0.06997EPSS
Exploits4
Amazon
Amazon
added 2025/03/06 12:0 a.m.9 views

Medium: openssh

Issue Overview: A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying...

6.8CVSS6.9AI score0.06997EPSS
Exploits4
OSV
OSV
added 2025/02/18 7:15 p.m.29 views

CVE-2025-26465

A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. Fo...

6.8CVSS5.8AI score0.38474EPSS
Exploits5References25
AlpineLinux
AlpineLinux
added 2025/02/18 6:27 p.m.25 views

CVE-2025-26465

A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. Fo...

6.8CVSS6.7AI score0.06997EPSS
Exploits4
Vulnrichment
Vulnrichment
added 2025/02/18 6:27 p.m.18 views

CVE-2025-26465 Openssh: machine-in-the-middle attack if verifyhostkeydns is enabled

A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a malicious machine impersonating a legit server. This issue occurs due to how OpenSSH mishandles error codes in specific conditions when verifying the host key. Fo...

6.8CVSS6.6AI score0.06997EPSS
Exploits4References8
Ubuntu
Ubuntu
added 2025/02/18 6:0 p.m.17 views

USN-7270-2: OpenSSH vulnerability

USN-7270-1 fixed a vulnerability in OpenSSH. This update provides the corresponding update for Ubuntu 16.04 LTS and Ubuntu 18.04 LTS. Original advisory details: It was discovered that the OpenSSH client incorrectly handled the non-default VerifyHostKeyDNS option. If that option were enabled, an...

6.8CVSS7.1AI score0.06997EPSS
Exploits4
Debian
Debian
added 2025/02/18 9:26 a.m.98 views

[SECURITY] [DSA 5868-1] openssh security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5868-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso February 18, 2025 https://www.debian.org/security/faq -...

6.8CVSS6.6AI score0.06997EPSS
Exploits4
Positive Technologies
Positive Technologies
added 2025/02/17 12:0 a.m.8 views

PT-2025-7168

Name of the Vulnerable Software and Affected Versions OpenSSH versions 6.8p1 through 9.9p1 Description A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled, allowing a machine-in-the-middle attack to be performed by a malicious machine impersonating a legitimate server...

7.1CVSS6.9AI score0.38474EPSS
Exploits5References238
Rows per page
Query Builder