cbcvebase.

Openbsd OpenSSH vulnerabilities

125 known vulnerabilities affecting openbsd/openssh.

Total CVEs
125
CISA KEV
0
Public exploits
24
Exploited in wild
10
Severity breakdown
CRITICAL12HIGH46MEDIUM54LOW13

Vulnerabilities

Page 4 of 7
CVE-2003-1562P3HIGHCVSS 7.6v1.2v1.2.1+43 more2003-12-31
CVE-2003-1562 [HIGH] CVE-2003-1562: sshd in OpenSSH 3.6.1p2 and earlier, when PermitRootLogin is disabled and using PAM keyboard-interac sshd in OpenSSH 3.6.1p2 and earlier, when PermitRootLogin is disabled and using PAM keyboard-interactive authentication, does not insert a delay after a root login attempt with the correct password, which makes it easier for remote attackers to use timing differences to determine if the password step of a multi-step authentication is successful, a different vul
nvdosv
CVE-2014-2653P3MEDIUMCVSS 6.5≤ 6.6v6.0+5 more2014-03-27
CVE-2014-2653 [MEDIUM] CWE-20 CVE-2014-2653: The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of SSHFP DNS RR checking by presenting an unacceptable HostCertificate.
nvdosv
CVE-2023-51767P3HIGHCVSS 7.0≥ 0, < 9.7_p1-r02023-12-24
CVE-2023-51767 [HIGH] CVE-2023-51767: OpenSSH through 10 OpenSSH through 10.0, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges. NOTE: this is disputed by the Supplier, who states "we do not consider it to be the applicati
osv
CVE-2001-1029P4LOWCVSS 2.1PoCv4.52001-09-20
CVE-2001-1029 [LOW] CVE-2001-1029: libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabili libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabilities for reading the copyright and welcome files, which allows local users to bypass the capabilities checks and read arbitrary files by specifying alternate copyright or welcome files.
nvd
CVE-2026-35387P3MEDIUMCVSS 6.5fixed in 10.32026-04-02
CVE-2026-35387 [MEDIUM] CWE-670 CVE-2026-35387: OpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of any ECDSA algorithm in PubkeyAcc OpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of any ECDSA algorithm in PubkeyAcceptedAlgorithms or HostbasedAcceptedAlgorithms is misinterpreted to mean all ECDSA algorithms.
nvd
CVE-2000-0525P4CRITICALCVSS 10.0v1.2v1.2.3+1 more2000-06-08
CVE-2000-0525 [CRITICAL] CVE-2000-0525: OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local us OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by providing the command to the ssh daemon.
nvd
CVE-2012-0814P4MEDIUMCVSS 6.5≤ 5.6v1.2+76 more2012-01-27
CVE-2012-0814 [MEDIUM] CWE-255 CVE-2012-0814: The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messa The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command options, which allows remote authenticated users to obtain potentially sensitive information by reading these messages, as demonstrated by the shared user account required by Gitolite. NOTE: this can cross privileg
nvdosv
CVE-2001-0572P3HIGHCVSS 7.5v4.52001-08-22
CVE-2001-0572 [HIGH] CVE-2001-0572: The SSH protocols 1 and 2 (aka SSH-2) as implemented in OpenSSH and other packages have various weak The SSH protocols 1 and 2 (aka SSH-2) as implemented in OpenSSH and other packages have various weaknesses which can allow a remote attacker to obtain the following information via sniffing: (1) password lengths or ranges of lengths, which simplifies brute force password guessing, (2) whether RSA or DSA authentication is being used, (3) the number of authorized
nvd
CVE-2016-20012P3MEDIUMCVSS 5.3≤ 8.72021-09-15
CVE-2016-20012 [MEDIUM] CWE-203 CVE-2016-20012: OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of user OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a
nvd
CVE-2015-6564P3HIGHCVSS 7.0≤ 6.92015-08-24
CVE-2015-6564 [HIGH] CWE-264 CVE-2015-6564: Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms might allow local users to gain privileges by leveraging control of the sshd uid to send an unexpectedly early MONITOR_REQ_PAM_FREE_CTX request.
nvdosv
CVE-2008-4109P4MEDIUMCVSS 5.0≤ 4.3p2v1.2+66 more2008-09-18
CVE-2008-4109 [MEDIUM] CVE-2008-4109: A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE uses functions that are not async-signal-safe in the signal handler for login timeouts, which allows remote attackers to cause a denial of service (connection slot exhaustion) via multiple login attempts. NOTE: this issue ex
nvdosv
CVE-2016-1907P4MEDIUMCVSS 5.3v6.8v6.9+2 more2016-01-19
CVE-2016-1907 [MEDIUM] CWE-119 CVE-2016-1907: The ssh_packet_read_poll2 function in packet.c in OpenSSH before 7.1p2 allows remote attackers to ca The ssh_packet_read_poll2 function in packet.c in OpenSSH before 7.1p2 allows remote attackers to cause a denial of service (out-of-bounds read and application crash) via crafted network traffic.
nvdosv
CVE-2003-0386P4HIGHCVSS 7.5v3.6.12003-07-02
CVE-2003-0386 [HIGH] CVE-2003-0386: OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyRever OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions by connecting to a host from a system whose reverse DNS hostname contains the numeric IP address.
nvdosv
CVE-2020-14145P4MEDIUMCVSS 5.9≥ 5.7, < 8.4v8.4+2 more2020-06-29
CVE-2020-14145 [MEDIUM] CWE-203 CVE-2020-14145: The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information l The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.
nvd
CVE-2017-15906P4MEDIUMCVSS 5.3fixed in 7.62017-10-26
CVE-2017-15906 [MEDIUM] CWE-732 CVE-2017-15906: The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write ope The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.
nvdosv
CVE-2014-2532P4MEDIUMCVSS 4.2≤ 6.5v6.0+4 more2014-03-18
CVE-2014-2532 [MEDIUM] CWE-264 CVE-2014-2532: sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, wh sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass intended environment restrictions by using a substring located before a wildcard character.
nvdosv
CVE-2013-4548P4MEDIUMCVSS 6.0v6.2v6.32013-11-08
CVE-2013-4548 [MEDIUM] CWE-264 CVE-2013-4548: The mm_newkeys_from_blob function in monitor_wrap.c in sshd in OpenSSH 6.2 and 6.3, when an AES-GCM The mm_newkeys_from_blob function in monitor_wrap.c in sshd in OpenSSH 6.2 and 6.3, when an AES-GCM cipher is used, does not properly initialize memory for a MAC context data structure, which allows remote authenticated users to bypass intended ForceCommand and login-shell restrictions via packet data that provides a crafted callback address.
nvdosv
CVE-2018-15919P4MEDIUMCVSS 5.3≥ 5.9, ≤ 7.82018-08-28
CVE-2018-15919 [MEDIUM] CWE-200 CVE-2018-15919: Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attacker Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or "oracle") as a vulnerability.'
nvd
CVE-2015-5352P4MEDIUMCVSS 4.3≤ 6.82015-08-03
CVE-2015-5352 [MEDIUM] CWE-264 CVE-2015-5352: The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the refusal deadline for X connections, which makes it easier for remote attackers to bypass intended access restrictions via a connection outside of the permitted time window.
nvdosv
CVE-2003-0682P4HIGHCVSS 7.5≤ 3.7.12003-10-06
CVE-2003-0682 [HIGH] CVE-2003-0682: "Memory bugs" in OpenSSH 3.7.1 and earlier, with unknown impact, a different set of vulnerabilities "Memory bugs" in OpenSSH 3.7.1 and earlier, with unknown impact, a different set of vulnerabilities than CVE-2003-0693 and CVE-2003-0695.
nvdosv
Openbsd OpenSSH vulnerabilities | cvebase