Jan Schejbal discovered that Paramiko incorrectly handled permissions when
writing private key files. A local attacker could possibly use this issue
to gain access to private keys.

References

ubuntu.com/security/CVE-2022-24302

ubuntu.com/security/notices/USN-5351-2

nessus 28

ibm 7

openvas 25

osv 6

redhat 5

veracode 1

ubuntu 2

cvelist 1

nvd 1

prion 1

ubuntucve 1

github 1

mageia 1

fedora 3

debian 2

debiancve 1

cve 1

redos 1

redhatcve 1

suse 1

photon 2

nessus

EulerOS 2.0 SP9 : python-paramiko (EulerOS-SA-2022-1876)

2022-06-15 00:00:00

EulerOS 2.0 SP9 : python-paramiko (EulerOS-SA-2022-1852)

2022-06-15 00:00:00

SUSE SLES12 Security Update : python-paramiko (SUSE-SU-2022:1447-1)

2022-04-29 00:00:00

ibm

Security Bulletin: Vulnerability in paramiko-2.4.2-py2.py3 affects IBM Cloud Pak for Data System 1.0(CPDS 1.0) [CVE-2022-24302]

2023-07-17 14:05:56

Security Bulletin: Vulnerability in paramiko affects IBM Cloud Pak for Data System 2.0 (CPDS 2.0) [CVE-2022-24302]

2023-05-08 12:52:53

Security Bulletin: Vulnerability in paramiko-2.4.2-py2.py3-none-any.whl affects IBM Integrated Analytics System [CVE-2022-24302]

2023-06-08 13:40:11

openvas

Fedora: Security Advisory for python-paramiko (FEDORA-2022-8eb95d8611)

2022-03-28 00:00:00

Debian: Security Advisory (DLA-3104-1)

2022-09-13 00:00:00

Ubuntu: Security Advisory (USN-5351-2)

2022-08-26 00:00:00

osv

paramiko - security update

2022-09-12 00:00:00

Race Condition in Paramiko

2022-03-19 00:01:03

paramiko vulnerability

2022-03-28 16:43:01

redhat

(RHSA-2022:8863) Moderate: Red Hat OpenStack Platform 16.1.9 (python-paramiko) security update

2022-12-07 20:09:52

(RHSA-2022:8845) Moderate: Red Hat OpenStack Platform 16.2.4 (python-paramiko) security update

2022-12-07 19:00:33

(RHSA-2022:4712) Moderate: RHV Engine and Host Common Packages security update

2022-05-26 16:04:27

veracode

Information Disclosure

2022-03-18 05:54:36

ubuntu

Paramiko vulnerability

2022-03-29 00:00:00

Paramiko vulnerability

2022-03-28 00:00:00

cvelist

CVE-2022-24302

2022-03-17 21:02:10

nvd

CVE-2022-24302

2022-03-17 22:15:08

prion

Race condition

2022-03-17 22:15:00

ubuntucve

CVE-2022-24302

2022-03-17 00:00:00

github

Race Condition in Paramiko

2022-03-19 00:01:03

mageia

Updated python-paramiko packages fix security vulnerability

2022-04-10 00:20:39

fedora

[SECURITY] Fedora 35 Update: python-paramiko-2.10.3-1.fc35

2022-03-27 01:18:00

[SECURITY] Fedora 34 Update: python-paramiko-2.10.3-1.fc34

2022-03-27 01:40:47

[SECURITY] Fedora 36 Update: python-paramiko-2.10.3-1.fc36

2022-03-26 15:51:23

debian

[SECURITY] [DLA 2959-1] paramiko security update

2022-03-21 11:38:47

[SECURITY] [DLA 3104-1] paramiko security update

2022-09-12 09:57:08

debiancve

CVE-2022-24302

2022-03-17 22:15:08

cve

CVE-2022-24302

2022-03-17 22:15:08

redos

ROS-20220405-01

2022-04-05 00:00:00

redhatcve

CVE-2022-24302

2022-03-18 13:14:56

suse

Security update for python-paramiko (moderate)

2022-04-28 00:00:00

photon

Important Photon OS Security Update - PHSA-2022-0527

2022-10-15 00:00:00

Critical Photon OS Security Update - PHSA-2022-3.0-0470

2022-10-16 00:00:00

Solutions

Vulnerabilities intelligence
Perimeter control tool
Linux scanner
Windows scanner
Developers SDK
Security Intelligence feeds

Database

Vulnerabilities
Exploits
Security News
BugBounty
Wild Exploited
Top Vulnerabilities
CVE Feed

Resources

Statics & Sources
Plugins
API docs
FAQ
Blog
Glossary

Company

About
Contacts
Pricing
EULA
Privacy Policy
Submission Policy
OpenSource

@2024 Vulners Inc

AI Score

6.7

Confidence

Low

EPSS

0.003

Percentile

65.5%

JSON

Related for OSV:USN-5351-2