CVE-2016-0777
- EPSS 63.47%
- Veröffentlicht 14.01.2016 22:59:01
- Zuletzt bearbeitet 29.05.2026 21:16:25
The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain sensitive information from process memory by requesting transmission of an entire buffer, as demonstrated by reading...
CVE-2015-6565
- EPSS 2.61%
- Veröffentlicht 24.08.2015 01:59:02
- Zuletzt bearbeitet 06.05.2026 22:30:45
sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, which allows local users to cause a denial of service (terminal disruption) or possibly have unspecified other impact by writing to a device, as demonstrated by writing an e...
CVE-2015-6564
- EPSS 0.6%
- Veröffentlicht 24.08.2015 01:59:01
- Zuletzt bearbeitet 27.05.2026 17:16:23
Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MON...
CVE-2015-6563
- EPSS 0.38%
- Veröffentlicht 24.08.2015 01:59:00
- Zuletzt bearbeitet 27.05.2026 17:16:22
The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX requests, which allows local users to conduct impersonation attacks by leveraging any SSH login access in conjun...
CVE-2015-5600
- EPSS 9.3%
- Veröffentlicht 03.08.2015 01:59:03
- Zuletzt bearbeitet 27.05.2026 18:16:20
The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of keyboard-interactive devices within a single connection, which makes it easier for remote attackers to conduct brute-force at...
CVE-2015-5352
- EPSS 5.45%
- Veröffentlicht 03.08.2015 01:59:01
- Zuletzt bearbeitet 06.05.2026 22:30:45
The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictio...
- EPSS 1.83%
- Veröffentlicht 06.12.2014 15:59:07
- Zuletzt bearbeitet 06.05.2026 22:30:45
The OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7 and when running in a Kerberos environment, allows remote authenticated users to log in as another user when they are listed in the .k5users file of that user, which might bypass in...
CVE-2014-2653
- EPSS 1.99%
- Veröffentlicht 27.03.2014 10:55:04
- Zuletzt bearbeitet 28.05.2026 18:16:23
The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.
CVE-2014-2532
- EPSS 4.75%
- Veröffentlicht 18.03.2014 05:18:19
- Zuletzt bearbeitet 28.05.2026 18:16:22
sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.
CVE-2011-4327
- EPSS 0.42%
- Veröffentlicht 03.02.2014 03:55:03
- Zuletzt bearbeitet 29.05.2026 21:16:24
ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors, which allows local users to obtain sensitive key information via the ptrace system call.