Lucene search

Basic search
Lucene search
Search by product

Database

Vendors

FreeBSD0F7598CC-9FE2-11EE-B47F-901B0E9408DC

HistoryOct 16, 2023 - 12:00 a.m.

Vulners
/
Freebsd
/
nebula -- security fix for terrapin vulnerability

nebula -- security fix for terrapin vulnerability

2023-10-1600:00:00

vuxml.freebsd.org

security fix

terrapin vulnerability

nebula

golang.org/x/crypto

cve-2023-48795

update

unix

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

7 High

AI Score

Confidence

Low

0.963 High

EPSS

Percentile

99.5%

JSON

Upstream reports:

Security fix:

Update golang.org/x/crypto, which includes a fix for CVE-2023-48795.

OSVersionArchitecturePackageVersionFilename
FreeBSDanynoarchnebula< 1.8.1UNKNOWN

OS	Version	Architecture	Package	Version	Filename
FreeBSD	any	noarch	nebula	< 1.8.1	UNKNOWN

References

github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d

terrapin-attack.com/

www.openssh.com/txt/release-9.6

atlassian 1

oraclelinux 4

fedora 10

osv 15

cbl_mariner 13

ubuntu 4

mageia 5

redhat 7

debian 3

openvas 52

cloudfoundry 1

freebsd 3

alpinelinux 1

ibm 9

nessus 54

redos 2

prion 1

rosalinux 1

veracode 2

cvelist 1

paloalto 1

thn 1

freebsd_advisory 1

nvd 1

debiancve 1

amazon 2

cgr 1

f5 1

hackerone 1

almalinux 1

atlassian

CVE-2023-48795 vulnerability on SSH

2024-01-04 17:19:13

oraclelinux

buildah security update

2024-03-07 00:00:00

openssh security update

2024-03-18 00:00:00

openssh security update

2024-02-13 00:00:00

fedora

[SECURITY] Fedora 39 Update: putty-0.80-1.fc39

2024-01-11 01:17:14

[SECURITY] Fedora 39 Update: golang-x-crypto-0.18.0-1.fc39

2024-01-18 01:47:06

[SECURITY] Fedora 39 Update: proftpd-1.3.8b-1.fc39

2023-12-30 01:23:29

osv

Man-in-the-middle attacker can compromise integrity of secure channel in golang.org/x/crypto

2023-12-18 21:18:26

libssh vulnerability

2023-12-19 13:08:22

php-phpseclib3 - security update

2024-01-12 00:00:00

cbl_mariner

CVE-2023-48795 affecting package kubevirt for versions less than null

2024-01-10 08:19:37

CVE-2023-48795 affecting package libssh for versions less than 0.10.6-1

2024-01-14 22:46:30

CVE-2023-48795 affecting package moby-cli for versions less than 20.10.27-2

2024-01-19 03:54:24

ubuntu

libssh2 vulnerability

2024-01-15 00:00:00

LXD vulnerability

2024-04-22 00:00:00

FileZilla vulnerability

2024-01-18 00:00:00

mageia

Updated erlang packages fix a security vulnerability (Terrapin Attack)

2024-01-20 01:43:32

Updated filezilla packages fix a security vulnerability ("Terrapin attack")

2024-02-10 04:03:35

Updated libssh2 packages fix a security vulnerability (Terrapin Attack)

2024-01-08 13:12:44

redhat

(RHSA-2024:0625) Moderate: libssh security update

2024-01-31 08:08:23

(RHSA-2024:1196) Moderate: Red Hat JBoss Enterprise Application Platform 7.4 security update

2024-03-06 17:50:02

(RHSA-2024:1150) Moderate: buildah security update

2024-03-05 15:32:31

debian

[SECURITY] [DSA 5600-1] php-phpseclib security update

2024-01-12 07:13:37

[SECURITY] [DSA 5599-1] phpseclib security update

2024-01-12 07:13:27

[SECURITY] [DLA 3730-1] python-asyncssh security update

2024-02-01 00:13:38

openvas

Fedora: Security Advisory for podman (FEDORA-2024-06ebb70bdd)

2024-01-20 00:00:00

Fedora: Security Advisory for golang-x-crypto (FEDORA-2024-7b08207cdb)

2024-01-18 00:00:00

Fedora: Security Advisory for golang-x-crypto (FEDORA-2024-2705241461)

2024-01-18 00:00:00

cloudfoundry

USN-6561-1: libssh vulnerability | Cloud Foundry

2024-04-04 00:00:00

freebsd

jenkins -- Terrapin SSH vulnerability in Jenkins CLI client

2024-04-17 00:00:00

putty -- add protocol extension against 'Terrapin attack'

2023-10-16 00:00:00

FreeBSD -- Prefix Truncation Attack in the SSH protocol

2023-12-19 00:00:00

alpinelinux

CVE-2023-48795

2023-12-18 16:15:10

ibm

Security Bulletin: IBM Watson Discovery for IBM Cloud Pak for Data affected by vulnerability in net-ssh-4.2.0.gem

2024-05-30 07:47:08

Security Bulletin: IBM DataPower Gateway vulnerable to "Terrapin" attack in OpenSSH (CVE-2023-48795)

2024-05-14 15:04:31

Security Bulletin: IBM Datapower Operations Dashboard is vulnerable to a machine-in-the-middle attack CVE-2023-48795

2024-03-11 14:52:33

nessus

FreeBSD : nebula -- security fix for terrapin vulnerability (0f7598cc-9fe2-11ee-b47f-901b0e9408dc)

2023-12-21 00:00:00

Fedora 38 : proftpd (2023-b87ec6cf47)

2023-12-29 00:00:00

openSUSE 15 Security Update : proftpd (openSUSE-SU-2023:0421-1)

2023-12-30 00:00:00

redos

ROS-20240408-15

2024-04-08 00:00:00

ROS-20240409-04

2024-04-09 00:00:00

prion

Design/Logic Flaw

2023-12-18 16:15:00

rosalinux

Advisory ROSA-SA-2024-2382

2024-03-26 11:47:18

veracode

Rogue Session Attack (Terrapin)

2023-12-19 06:46:15

Prefix Truncation Attack (Terrapin Attack)

2023-12-19 09:12:16

cvelist

CVE-2023-48795

2023-12-18 00:00:00

paloalto

Impact of Terrapin SSH Attack

2024-01-09 01:30:00

thn

New Terrapin Flaw Could Let Attackers Downgrade SSH Protocol Security

2024-01-01 09:37:00

freebsd_advisory

FreeBSD-SA-23:19.openssh

2023-12-19 00:00:00

nvd

CVE-2023-48795

2023-12-18 16:15:10

debiancve

CVE-2023-48795

2023-12-18 16:15:10

amazon

Medium: openssh

2023-12-18 09:20:00

Medium: openssh

2023-12-18 09:20:00

cgr

CVE-2023-48795 vulnerabilities

2024-05-19 03:07:16

K000138264: SSH vulnerability CVE-2023-48795

2024-01-17 00:00:00

hackerone

Nextcloud: Weak ssh algorithms and CVE-2023-48795 Discovered on various subdomains of nextcloud.com

2024-04-04 01:18:35

almalinux

Moderate: libssh security update

2024-01-31 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

5.9 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

NONE

Scope

UNCHANGED

Confidentiality Impact

NONE

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N

7 High

AI Score

Confidence

Low

0.963 High

EPSS

Percentile

99.5%

JSON

Related for 0F7598CC-9FE2-11EE-B47F-901B0E9408DC