Vulmon
Recent Vulnerabilities
Research Posts
Trends
Blog
About
Contact
Vulmon Alerts
By Relevance
By Risk Score
By Publish Date
package ssh vulnerabilities and exploits
(subscribe to this query)
801
VMScore
CVE-2015-2908
Mobile Devices (aka MDI) C4 OBD-II dongles with firmware 2.x and 3.4.x, as used in Metromile Pulse and other products, do not validate firmware updates, which allows remote malicious users to execute arbitrary code by specifying an update server.
Mobile Devices C4 Obd-ii Dongle Firmware
356
VMScore
CVE-2011-0437
shared/inc/sql/ssh.php in the SSH accounts management implementation in Domain Technologie Control (DTC) prior to 0.32.9 allows remote authenticated users to delete arbitrary accounts via the edssh_account parameter in a deletesshaccount Delete action.
Gplhost Domain Technologie Control
Gplhost Domain Technologie Control 0.29.8
Gplhost Domain Technologie Control 0.28.9
Gplhost Domain Technologie Control 0.32.1
Gplhost Domain Technologie Control 0.25.3
Gplhost Domain Technologie Control 0.30.6
Gplhost Domain Technologie Control 0.26.9
Gplhost Domain Technologie Control 0.29.1
Gplhost Domain Technologie Control 0.27.3
Gplhost Domain Technologie Control 0.28.4
Gplhost Domain Technologie Control 0.32.3
Gplhost Domain Technologie Control 0.28.10
Gplhost Domain Technologie Control 0.25.1
Gplhost Domain Technologie Control 0.30.18
Gplhost Domain Technologie Control 0.26.8
Gplhost Domain Technologie Control 0.28.6
Gplhost Domain Technologie Control 0.28.2
Gplhost Domain Technologie Control 0.32.2
Gplhost Domain Technologie Control 0.29.14
Gplhost Domain Technologie Control 0.29.17
Gplhost Domain Technologie Control 0.26.7
Gplhost Domain Technologie Control 0.29.16
694
VMScore
CVE-2010-0137
Unspecified vulnerability in the sshd_child_handler process in the SSH server in Cisco IOS XR 3.4.1 up to and including 3.7.0 allows remote malicious users to cause a denial of service (process crash and memory consumption) via a crafted SSH2 packet, aka Bug ID CSCsu10574.
Cisco Ios Xr 3.5.3
Cisco Ios Xr 3.5.4
Cisco Ios Xr 3.4.1
Cisco Ios Xr 3.4.2
Cisco Ios Xr 3.7.0
Cisco Ios Xr 3.6.0
Cisco Ios Xr 3.6.1
Cisco Ios Xr 3.4.3
Cisco Ios Xr 3.5.2
756
VMScore
CVE-2009-3369
CgiUserConfigEdit in BackupPC 3.1.0, when SSH keys and Rsync are in use in a multi-user environment, does not restrict users from the ClientNameAlias function, which allows remote authenticated users to read and write sensitive files by modifying ClientNameAlias to match another ...
Craig Barratt Backuppc 3.1.0
802
VMScore
CVE-2008-0166
OpenSSL 0.9.8c-1 up to versions prior to 0.9.8g-9 on Debian-based operating systems uses a random number generator that generates predictable numbers, which makes it easier for remote malicious users to conduct brute force guessing attacks against cryptographic keys.
Openssl Openssl
Canonical Ubuntu Linux 7.04
Canonical Ubuntu Linux 7.10
Canonical Ubuntu Linux 8.04
Canonical Ubuntu Linux 6.06
Debian Debian Linux 4.0
3 EDB exploits
22 Github repositories
614
VMScore
CVE-2008-1483
OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, as demonstrated by opening TCP port 6010 (IPv4) and sniffing a cookie sent by Emac...
Openbsd Openssh 4.3p2
694
VMScore
CVE-2007-6360
Unspecified vulnerability in the Sun eXtended System Control Facility (XSCF) Control Package (XCP) firmware prior to 1050 on SPARC Enterprise M4000, M5000, M8000, and M9000 servers allows remote malicious users to cause a denial of service (reboot) via (1) telnet, (2) ssh, or (3)...
Sun Extended System Control Facility Xcp 1040
828
VMScore
CVE-2007-4995
Off-by-one error in the DTLS implementation in OpenSSL 0.9.8 prior to 0.9.8f allows remote malicious users to execute arbitrary code via unspecified vectors.
Openssl Openssl 0.9.8d
Openssl Openssl 0.9.8e
Openssl Openssl 0.9.8b
Openssl Openssl 0.9.8c
Openssl Openssl 0.9.8
Openssl Openssl 0.9.8a
668
VMScore
CVE-2007-4752
ssh in OpenSSH prior to 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows malicious users to violate intended policy and gain privileges by causing an X client to be treated as trusted.
Openbsd Openssh 4.3p2
Openbsd Openssh 4.3p1
Openbsd Openssh 4.0
Openbsd Openssh 4.3
Openbsd Openssh 4.2p1
Openbsd Openssh 4.4p1
Openbsd Openssh 4.4
Openbsd Openssh 4.1
Openbsd Openssh 4.0p1
Openbsd Openssh
Openbsd Openssh 4.5
Openbsd Openssh 4.2
Openbsd Openssh 4.1p1
685
VMScore
CVE-2007-4321
fail2ban 0.8 and previous versions does not properly parse sshd log files, which allows remote malicious users to add arbitrary hosts to the /etc/hosts.deny file and cause a denial of service by adding arbitrary IP addresses to the sshd log file, as demonstrated by logging in via...
Fail2ban Fail2ban 0.8
1 EDB exploit
VMScore
CVSSv2
CVSSv3
VMScore
Recommendations:
NULL pointer dereference
CVE-2023-52689
CVE-2024-23803
client side
CVE-2023-52696
information disclosure
CVE-2024-35843
CVE-2024-27130
CVE-2023-52697
Vulnerability Notification Service
You don’t have to wait for vulnerability scanning results
Get Started
« PREV
1
2
3
4
5
6
7
8
9
10
NEXT »