Ssh CVEs and Security Vulnerabilities

Search

Use the Query Builder to create your own search query, or check out the documentation to learn the search syntax.

Search Examples

CVEs in KEV CVEs with EPSS >= 80% Crit. Microsoft High Apache SQL Injection (CWE-89) Linux Kernel High (CVSS 3.1) Apache Struts RCE (Remote Code Execution) XSS (CWE-79) Critical (CVSS 4.0) CVEs to check

Search Results (48 CVEs found)

CVE	Vendors	Products	Updated	CVSS v3.1
CVE-2001-0361	2 Openbsd, Ssh	2 Openssh, Ssh	2025-04-03	N/A
Implementations of SSH version 1.5, including (1) OpenSSH up to version 2.3.0, (2) AppGate, and (3) ssh-1 up to version 1.2.31, in certain configurations, allow a remote attacker to decrypt and/or alter traffic via a "Bleichenbacher attack" on PKCS#1 version 1.5.
CVE-1999-1159	1 Ssh	1 Ssh2	2025-04-03	N/A
SSH 2.0.11 and earlier allows local users to request remote forwarding from privileged ports without being root.
CVE-2002-1645	1 Ssh	1 Ssh2	2025-04-03	N/A
Buffer overflow in the URL catcher feature for SSH Secure Shell for Workstations client 3.1 to 3.2.0 allows remote attackers to execute arbitrary code via a long URL.
CVE-2002-1646	1 Ssh	1 Secure Shell For Servers	2025-04-03	N/A
SSH Secure Shell for Servers 3.0.0 to 3.1.1 allows remote attackers to override the AllowedAuthentications configuration and use less secure authentication schemes (e.g. password) than configured for the server.
CVE-2021-27893	2 Microsoft, Ssh	4 Windows, Tectia Client, Tectia Connectsecure and 1 more	2024-11-21	7.0 High
SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation in nonstandard conditions. ConnectSecure on Windows is affected.
CVE-2021-27892	2 Microsoft, Ssh	4 Windows, Tectia Client, Tectia Connectsecure and 1 more	2024-11-21	7.8 High
SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation. ConnectSecure on Windows is affected.
CVE-2021-27891	2 Microsoft, Ssh	4 Windows, Tectia Client, Tectia Connectsecure and 1 more	2024-11-21	8.8 High
SSH Tectia Client and Server before 6.4.19 on Windows have weak key generation. ConnectSecure on Windows is affected.
CVE-2024-30170	2 Privx, Ssh	2 Privx, Privx	2024-08-12	7.5 High
PrivX before 34.0 allows data exfiltration and denial of service via the REST API. This is fixed in minor versions 33.1, 32.3, 31.3, and later, and in major version 34.0 and later,

« first previous Page 3 of 3.