Jan Schejbal discovered that Paramiko incorrectly handled permissions when
writing private key files. A local attacker could possibly use this issue
to gain access to private keys.

References

ubuntu.com/security/CVE-2022-24302

ubuntu.com/security/notices/USN-5351-1

nessus 28

osv 6

openvas 25

ubuntucve 1

mageia 1

ubuntu 2

github 1

veracode 1

cvelist 1

prion 1

redhat 5

ibm 7

nvd 1

debian 2

fedora 3

debiancve 1

cve 1

redos 1

redhatcve 1

suse 1

photon 2

nessus

EulerOS Virtualization 2.9.1 : python-paramiko (EulerOS-SA-2022-2189)

2022-07-29 00:00:00

EulerOS Virtualization 2.9.0 : python-paramiko (EulerOS-SA-2022-2208)

2023-05-25 00:00:00

EulerOS 2.0 SP10 : python-paramiko (EulerOS-SA-2022-1821)

2022-06-13 00:00:00

osv

Race Condition in Paramiko

2022-03-19 00:01:03

paramiko - security update

2022-09-12 00:00:00

CVE-2022-24302

2022-03-17 22:15:08

openvas

Huawei EulerOS: Security Advisory for python-paramiko (EulerOS-SA-2022-2084)

2022-07-14 00:00:00

Ubuntu: Security Advisory (USN-5351-1)

2022-03-29 00:00:00

Huawei EulerOS: Security Advisory for python-paramiko (EulerOS-SA-2023-1287)

2023-01-31 00:00:00

ubuntucve

CVE-2022-24302

2022-03-17 00:00:00

mageia

Updated python-paramiko packages fix security vulnerability

2022-04-10 00:20:39

ubuntu

Paramiko vulnerability

2022-03-28 00:00:00

Paramiko vulnerability

2022-03-29 00:00:00

github

Race Condition in Paramiko

2022-03-19 00:01:03

veracode

Information Disclosure

2022-03-18 05:54:36

cvelist

CVE-2022-24302

2022-03-17 21:02:10

prion

Race condition

2022-03-17 22:15:00

redhat

(RHSA-2022:8863) Moderate: Red Hat OpenStack Platform 16.1.9 (python-paramiko) security update

2022-12-07 20:09:52

(RHSA-2022:8845) Moderate: Red Hat OpenStack Platform 16.2.4 (python-paramiko) security update

2022-12-07 19:00:33

(RHSA-2022:4712) Moderate: RHV Engine and Host Common Packages security update

2022-05-26 16:04:27

ibm

Security Bulletin: Vulnerability in paramiko-2.4.2-py2.py3 affects IBM Cloud Pak for Data System 1.0(CPDS 1.0) [CVE-2022-24302]

2023-07-17 14:05:56

Security Bulletin: Vulnerability in paramiko affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0) [CVE-2022-24302]

2023-05-08 12:52:53

Security Bulletin: Vulnerability in paramiko-2.4.2-py2.py3-none-any.whl affects IBM Integrated Analytics System [CVE-2022-24302]

2023-06-08 13:40:11

nvd

CVE-2022-24302

2022-03-17 22:15:08

debian

[SECURITY] [DLA 2959-1] paramiko security update

2022-03-21 11:38:47

[SECURITY] [DLA 3104-1] paramiko security update

2022-09-12 09:57:08

fedora

[SECURITY] Fedora 35 Update: python-paramiko-2.10.3-1.fc35

2022-03-27 01:18:00

[SECURITY] Fedora 36 Update: python-paramiko-2.10.3-1.fc36

2022-03-26 15:51:23

[SECURITY] Fedora 34 Update: python-paramiko-2.10.3-1.fc34

2022-03-27 01:40:47

debiancve

CVE-2022-24302

2022-03-17 22:15:08

cve

CVE-2022-24302

2022-03-17 22:15:08

redos

ROS-20220405-01

2022-04-05 00:00:00

redhatcve

CVE-2022-24302

2022-03-18 13:14:56

suse

Security update for python-paramiko (moderate)

2022-04-28 00:00:00

photon

Important Photon OS Security Update - PHSA-2022-0527

2022-10-15 00:00:00

Critical Photon OS Security Update - PHSA-2022-3.0-0470

2022-10-16 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

AI Score

6.6

Confidence

Low

EPSS

0.003

Percentile

65.5%

JSON

Related for OSV:USN-5351-1