Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
ssh vulnerabilities and exploits
(subscribe to this query)
9.8
CVSSv3
CVE-2022-25569
Bettini Srl GAMS Product Line v4.3.0 exists to re-use static SSH keys across installations, allowing unauthenticated malicious users to login as root users via extracting a key from the software.
Bettinivideo Sgsetup 4.3.0
9.8
CVSSv3
CVE-2021-30064
On Schneider Electric ConneXium Tofino Firewall TCSEFEA23F3F22 prior to 03.23, TCSEFEA23F3F20/21, and Belden Tofino Xenon Security Appliance, an SSH login can succeed with hardcoded default credentials (if the device is in the uncommissioned state).
Belden Tofino Xenon Security Appliance Firmware
Belden Tofino Argon Fa-tsa-220-tx\\/mm Firmware -
Belden Tofino Argon Fa-tsa-220-tx\\/tx Firmware -
Belden Tofino Argon Fa-tsa-220-mm\\/tx Firmware -
Belden Tofino Argon Fa-tsa-220-mm\\/mm Firmware -
Belden Tofino Argon Fa-tsa-100-tx\\/tx Firmware -
Belden Eagle 20 Tofino 943 987-505-mm\\/mm Firmware -
Belden Eagle 20 Tofino 943 987-504-mm\\/tx Firmware -
Belden Eagle 20 Tofino 943 987-502 -tx\\/mm Firmware -
Belden Eagle 20 Tofino 943 987-501-tx\\/tx Firmware -
Schneider-electric Tcsefea23f3f20 Firmware -
Schneider-electric Tcsefea23f3f21 Firmware -
Schneider-electric Tcsefea23f3f22 Firmware
9.8
CVSSv3
CVE-2022-24693
Baicells Nova436Q and Neutrino 430 devices with firmware through QRTB 2.7.8 have hardcoded credentials that are easily discovered, and can be used by remote malicious users to authenticate via ssh. (The credentials are stored in the firmware, encrypted by the crypt function.)
Baicells Nova436q Firmware
Baicells Neutrino 430 Firmware
1 Github repository
9.8
CVSSv3
CVE-2021-20146
An unprotected ssh private key exists on the Gryphon devices which could be used to achieve root access to a server affiliated with Gryphon's development and infrastructure. At the time of discovery, the ssh key could be used to login to the development server hosted in Amaz...
Gryphonconnect Gryphon Tower Firmware
9.8
CVSSv3
CVE-2021-40520
Airangel HSMX Gateway devices up to and including 5.2.04 have Weak SSH Credentials.
Airangel Hsmx-app-25 Firmware
Airangel Hsmx-app-100 Firmware
Airangel Hsmx-app-1000 Firmware
Airangel Hsmx-app-5000 Firmware
Airangel Hsmx-app-20000 Firmware
9.8
CVSSv3
CVE-2021-40119
A vulnerability in the key-based SSH authentication mechanism of Cisco Policy Suite could allow an unauthenticated, remote malicious user to log in to an affected system as the root user. This vulnerability is due to the re-use of static SSH keys across installations. An attacker...
Cisco Policy Suite
9.8
CVSSv3
CVE-2021-38297
Go prior to 1.16.9 and 1.17.x prior to 1.17.2 has a Buffer Overflow via large arguments in a function invocation from a WASM module, when GOARCH=wasm GOOS=js is used.
Golang Go
Fedoraproject Fedora 34
Fedoraproject Fedora 35
2 Github repositories
9.8
CVSSv3
CVE-2021-36298
Dell EMC InsightIQ, versions before 4.1.4, contain risky cryptographic algorithms in the SSH component. A remote unauthenticated attacker could potentially exploit this vulnerability leading to authentication bypass and remote takeover of the InsightIQ. This allows an malicious u...
Dell Isilon Insightiq Firmware
9.8
CVSSv3
CVE-2021-41393
Teleport prior to 4.4.11, 5.x prior to 5.2.4, 6.x prior to 6.2.12, and 7.x prior to 7.1.1 allows forgery of SSH host certificates in some situations.
Goteleport Teleport
9.8
CVSSv3
CVE-2021-28911
BAB TECHNOLOGIE GmbH eibPort V3 prior version 3.9.1 allow unauthenticated attackers access to /tmp path which contains some sensitive data (e.g. device serial number). Having those info, a possible loginId can be self-calculated in a brute force attack against BMX interface. This...
Bab-technologie Eibport Firmware
CVSSv3
CVSSv2
CVSSv3
VMScore
Recommendations:
bypass
open redirect
CVE-2024-4358
CVE-2024-24199
CVE-2024-5550
CVE-2024-5305
CVE-2024-30373
CVE-2024-1800
deserialization
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »