0.0004 Low
EPSS
Percentile
5.1%
It was found that the host private key material could possibly leak to the privilege-separated child processes via re-allocated memory. An attacker able to compromise the privilege-separated process could therefore obtain the leaked key information.
bugzilla.redhat.com/show_bug.cgi?id=1406286
www.openssh.com/txt/release-7.4