2 matches found
CVE-2025-32433
The CVE-2025-32433 issue affects Erlang/OTP’s SSH server and is caused by a flaw in SSH message handling during authentication, enabling an unauthenticated attacker to execute arbitrary commands with the SSH daemon’s privileges (potentially root). Affected OTP versions include OTP-27.3.2?3, OTP-2...
CVE-2024-20323
Cisco Intelligent Node (iNode) Software is affected by CVE-2024-20323 due to hard-coded cryptographic material in the TLS setup between iNode Manager and its nodes. A remote, unauthenticated attacker in a man-in-the-middle position could use the static key to generate a trusted certificate, imper...