cbcvebase.
CVE-2002-0765
published 2002-08-12

CVE-2002-0765: sshd in OpenSSH 3.2.2, when using YP with netgroups and under certain conditions, may allow users to successfully authenticate and log in with another user's…

PriorityP424high7.5CVSS 2.0
AVNACLAuNCPIPAP
EPSS
1.28%
66.3th percentile
sshd in OpenSSH 3.2.2, when using YP with netgroups and under certain conditions, may allow users to successfully authenticate and log in with another user's password.

Affected

7 ranges
VendorProductVersion rangeFixed in
debianopenssh< openssh 1:3.3p1-0.0woody1 (bookworm)openssh 1:3.3p1-0.0woody1 (bookworm)
openbsdopenbsd
openbsdopenssh
openbsdopenssh>= 0 < 1:3.3p1-0.0woody11:3.3p1-0.0woody1
openbsdopenssh>= 0 < 1:3.3p1-0.0woody11:3.3p1-0.0woody1
openbsdopenssh>= 0 < 1:3.3p1-0.0woody11:3.3p1-0.0woody1
openbsdopenssh>= 0 < 1:3.3p1-0.0woody11:3.3p1-0.0woody1

CVSS provenance

nvdv2.07.5HIGHAV:N/AC:L/Au:N/C:P/I:P/A:P
osv7.5HIGH
vendor_debian7.5HIGH
Stop checking back — get the weekly exploitation signal.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.