Lucene search

CBL MarinerCBLMARINER:43024

HistoryAug 25, 2024 - 3:13 p.m.

CVE-2024-6387 affecting package openssh for versions less than 9.8p1-1

2024-08-2515:13:42

CBL Mariner

cve-2024-6387 openssh unix vulnerability

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

Low

EPSS

0.004

Percentile

73.8%

JSON

CVE-2024-6387 affecting package openssh for versions less than 9.8p1-1. An upgraded version of the package is available that resolves this issue.

OSVersionArchitecturePackageVersionFilename
Azure Linux3.0allopenssh< 9.8p1-1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
Azure Linux	3.0	all	openssh	< 9.8p1-1	UNKNOWN

githubexploit

Exploit for Race Condition in Openbsd Openssh

2024-07-03 06:08:32

Exploit for Race Condition in Openbsd Openssh

2024-07-03 15:51:16

Exploit for Race Condition in Openbsd Openssh

2024-08-12 06:16:08

nessus

GLSA-202407-09 : OpenSSH: Remote Code Execution

2024-07-01 00:00:00

Fedora 39 : openssh (2024-213f33544e)

2024-07-02 00:00:00

SUSE SLED15 / SLES15 Security Update : openssh (SUSE-SU-2024:2275-1)

2024-07-03 00:00:00

ibm

Security Bulletin: OpenSSH vulnerability affects IBM Db2® on Cloud Pak for Data, and Db2 Warehouse on Cloud Pak for Data

2024-08-07 18:35:10

Security Bulletin: AIX is vulnerable to arbitrary code execution (CVE-2024-6387) due to OpenSSH

2024-07-09 22:03:38

Security Bulletin: IBM Watson Speech Services Cartridge for IBM Cloud Pak for Data v4.8.5 is affected by a arbitrary code execution in OpenSSH server [CVE-2024-6387]

2024-07-23 21:10:06

archlinux

[ASA-202407-1] openssh: authentication bypass

2024-07-01 00:00:00

slackware

[slackware-security] openssh

2024-07-01 20:31:12

cbl_mariner

CVE-2024-6387 affecting package openssh for versions less than 8.9p1-6

2024-07-04 13:46:57

redhat

(RHSA-2024:4340) Important: openssh security update

2024-07-05 21:13:39

(RHSA-2024:4335) Moderate: security update Logging for Red Hat OpenShift - 5.8.9

2024-07-17 13:46:52

(RHSA-2024:4469) Important: OpenShift Container Platform 4.16.3 security update

2024-07-16 13:38:02

openvas

Huawei EulerOS: Security Advisory for openssh (EulerOS-SA-2024-2184)

2024-08-20 00:00:00

Fedora: Security Advisory (FEDORA-2024-dc89a2e1bf)

2024-09-10 00:00:00

Fedora: Security Advisory (FEDORA-2024-213f33544e)

2024-09-10 00:00:00

freebsd

OpenSSH -- Race condition resulting in potential remote code execution

2024-07-01 00:00:00

gentoo

OpenSSH: Remote Code Execution

2024-07-01 00:00:00

mageia

Updated openssh packages fix security vulnerability

2024-07-03 19:36:28

osv

Important: openssh security update

2024-07-03 00:00:00

openssh vulnerability

2024-07-01 09:06:31

openssh - security update

2024-07-01 00:00:00

kaspersky

KLA70445 ACE vulnerability in Microsoft Mariner

2024-07-11 00:00:00

KLA71456 RCE vulnerability in Microsoft Azure

2024-07-11 00:00:00

fedora

[SECURITY] Fedora 40 Update: openssh-9.6p1-1.fc40.4

2024-07-02 20:16:57

[SECURITY] Fedora 39 Update: openssh-9.3p1-11.fc39

2024-07-02 18:08:34

virtuozzo

Virtuozzo Hybrid Infrastructure 6.2 (6.2.0-138)

2024-07-01 00:00:00

Virtuozzo Hybrid Infrastructure 6.0 Update 1.8 (6.0.1-98)

2024-07-01 00:00:00

Virtuozzo Hybrid Infrastructure 6.1 Update 1.3 (6.1.1-44)

2024-07-01 00:00:00

aix

AIX is vulnerable to arbitrary code execution (CVE-2024-6387) due to OpenSSH

2024-07-09 15:29:43

ubuntu

OpenSSH vulnerability

2024-07-01 00:00:00

wizblog

RCE vulnerability in OpenSSH: everything you need to know

2024-07-01 13:49:17

redos

ROS-20240704-01

2024-07-04 00:00:00

almalinux

Important: openssh security update

2024-07-03 00:00:00

oraclelinux

openssh security update

2024-07-01 00:00:00

openssh security update

2024-07-04 00:00:00

schneier

New Open SSH Vulnerability

2024-07-03 15:27:11

mscve

RedHat Openssh: CVE-2024-6387 Remote Code Execution Due To A Race Condition In Signal Handling

2024-07-11 07:00:00

cloudfoundry

USN-6859-1: OpenSSH vulnerability | Cloud Foundry

2024-07-25 00:00:00

paloalto

Informational Bulletin: Impact of OpenSSH regreSSHion Vulnerability

2024-07-01 19:30:00

broadcom

CVE-2024-6387: Remote Unauthorized Code Execution Vulnerability in openSSH server (regreSSHion)

2024-07-15 00:00:00

debiancve

CVE-2024-7589

2024-08-12 13:38:44

CVE-2024-6387

2024-07-01 13:15:06

photon

Important Photon OS Security Update - PHSA-2024-4.0-0642

2024-07-01 00:00:00

Important Photon OS Security Update - PHSA-2024-5.0-0307

2024-07-01 00:00:00

freebsd_advisory

FreeBSD-SA-24:04.openssh

2024-07-01 00:00:00

FreeBSD-SA-24:08.openssh

2024-08-07 00:00:00

nvd

CVE-2024-6387

2024-07-01 13:15:06

CVE-2024-7589

2024-08-12 13:38:44

alpinelinux

CVE-2024-6387

2024-07-01 13:15:06

vulnrichment

CVE-2024-7589 OpenSSH pre-authentication async signal safety issue

2024-08-11 03:15:52

CVE-2024-6387 Openssh: regresshion - race condition in ssh allows rce/dos

2024-07-01 12:37:25

trendmicroblog

The Potential Impact of the OpenSSH Vulnerabilities CVE-2024–6387 and CVE-2024-6409

2024-07-17 00:00:00

redhatcve

CVE-2024-6409

2024-07-08 17:56:18

CVE-2024-6387

2024-07-01 10:24:35

CVE-2024-7589

2024-08-16 00:08:06

K000140222: OpenSSH server vulnerability CVE-2024-6387

2024-07-01 00:00:00

K000140768: OpenSSH vulnerability CVE-2024-7589

2024-08-22 00:00:00

citrix

Cloud Software Group Security Advisory for CVE-2024-6387

2024-07-04 15:15:05

cve

CVE-2024-7589

2024-08-12 13:38:44

CVE-2024-6387

2024-07-01 13:15:06

cvelist

CVE-2024-7589 OpenSSH pre-authentication async signal safety issue

2024-08-11 03:15:52

CVE-2024-6387 Openssh: regresshion - race condition in ssh allows rce/dos

2024-07-01 12:37:25

thn

New OpenSSH Vulnerability Discovered: Potential Remote Code Execution Risk

2024-07-10 03:26:00

FreeBSD Releases Urgent Patch for High-Severity OpenSSH Vulnerability

2024-08-12 10:15:00

New OpenSSH Vulnerability Could Lead to RCE as Root on Linux Systems

2024-07-01 10:50:00

attackerkb

CVE-2020-14871

2020-10-21 00:00:00

cisco

Remote Unauthenticated Code Execution Vulnerability in OpenSSH Server (regreSSHion): July 2024

2024-07-02 16:00:00

ubuntucve

CVE-2024-7589

2024-08-12 00:00:00

CVE-2024-6387

2024-07-01 00:00:00

ics

Siemens Industrial Products

2024-09-12 12:00:00

qualysblog

regreSSHion: Remote Unauthenticated Code Execution Vulnerability in OpenSSH server

2024-07-01 08:23:20

pentestpartners

RCE vulnerability in OpenSSH – RegreSSHion (CVE-2024-6387)

2024-07-02 05:31:12

wallarmlab

CVE-2024-6387: New OpenSSH RegreSSHion Vulnerability Gives Hackers Root Access on Linux Servers – 700,000+ Linux Boxes Potentially at Risk

2024-07-06 21:46:49

arista

Security Advisory 0100

2024-07-08 00:00:00

hivepro

Attacks, Vulnerabilities and Actors 01 to 07 July 2024

2024-07-10 17:49:37

zdt

OpenSSH Server regreSSHion Remote Code Execution Vulnerability

2024-07-02 00:00:00

packetstorm

OpenSSH Server regreSSHion Remote Code Execution

2024-07-01 00:00:00

CVSS3

8.1

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

HIGH

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H

AI Score

7.5

Confidence

Low

EPSS

0.004

Percentile

73.8%

JSON

CVE-2024-6387 affecting package openssh for versions less than 9.8p1-1

Related