OpenSSH Remote Code Execution Vulnerability

July 2, 2024

A vulnerability was identified in OpenSSH. A remote attacker could exploit this vulnerability to trigger remote code execution on the targeted system.

 

Note:

CVE-2024-6387 affected sshd(8) was present in Portable OpenSSH versions between 8.5p1 and 9.7p1 (inclusive) that may allow arbitrary code execution with root privileges.

RISK: High Risk

High Risk

TYPE: Servers – Network Management

TYPE: Network Management

Impact

  • Remote Code Execution

System / Technologies affected

  • OpenSSH versions between 8.5p1 and 9.7p1 (inclusive)

Solutions

Before installation of the software, please visit the software manufacturer web-site for more details.

The vendors have issued fixes:

 

https://www.openssh.com/txt/release-9.8

Vulnerability Identifier

Source

Related Link

A considerable amount of time and effort goes into maintaining this website, creating backend automation and creating new features and content for you to make actionable intelligence decisions. Everyone that supports the site helps enable new functionality.

If you like the site, please support us on “Patreon” or “Buy Me A Coffee” using the buttons below

Buy Me A Coffee
Patreon

To keep up to date follow us on the below channels.

You may have missed

image

[QILIN] – Ransomware Victim: DMF Lighting

November 21, 2024
image

[QILIN] – Ransomware Victim: Stalcop Metal Forming LLC

November 21, 2024
image

[HANDALA] – Ransomware Victim: SSV Blockchain Network

November 21, 2024
news

Hijacked Jupyter Servers: New Threat in Illegal Sports Stream Ripping

November 21, 2024
news

Deepfake Digital Identity Attacks Occur Every Five Minutes: Alarming Trends Unveiled

November 21, 2024