The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.62629.

Exploitation poc

Automatable no

Technical Impact partial

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions
n/a n/a affected
Version Status Constraints
n/a affected

Configuration 1 [-]

cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:a:putty:putty:*:*:*:*:*:*:*:*

Configuration 3 [-]

cpe:2.3:a:filezilla-project:filezilla_client:*:*:*:*:*:*:*:*

Configuration 4 [-]

AND
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:a:panic:transmit_5:*:*:*:*:*:*:*:*

Configuration 5 [-]

AND
cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*
cpe:2.3:a:panic:nova:*:*:*:*:*:*:*:*

Configuration 6 [-]

cpe:2.3:a:roumenpetrov:pkixssh:*:*:*:*:*:*:*:*

Configuration 7 [-]

cpe:2.3:a:winscp:winscp:*:*:*:*:*:*:*:*

Configuration 8 [-]

cpe:2.3:a:bitvise:ssh_client:*:*:*:*:*:*:*:*

Configuration 9 [-]

cpe:2.3:a:bitvise:ssh_server:*:*:*:*:*:*:*:*

Configuration 10 [-]

cpe:2.3:o:lancom-systems:lcos:*:*:*:*:*:*:*:*

Configuration 11 [-]

cpe:2.3:o:lancom-systems:lcos_fx:-:*:*:*:*:*:*:*

Configuration 12 [-]

cpe:2.3:o:lancom-systems:lcos_lx:-:*:*:*:*:*:*:*

Configuration 13 [-]

OR cpe:2.3:o:lancom-systems:lcos_sx:4.20:*:*:*:*:*:*:*
cpe:2.3:o:lancom-systems:lcos_sx:5.20:*:*:*:*:*:*:*

Configuration 14 [-]

cpe:2.3:o:lancom-systems:lanconfig:-:*:*:*:*:*:*:*

Configuration 15 [-]

cpe:2.3:a:vandyke:securecrt:*:*:*:*:*:*:*:*

Configuration 16 [-]

cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*

Configuration 17 [-]

cpe:2.3:a:net-ssh:net-ssh:7.2.0:*:*:*:*:ruby:*:*

Configuration 18 [-]

cpe:2.3:a:ssh2_project:ssh2:*:*:*:*:*:node.js:*:*

Configuration 19 [-]

cpe:2.3:a:proftpd:proftpd:*:*:*:*:*:*:*:*

Configuration 20 [-]

cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*

Configuration 21 [-]

cpe:2.3:a:crates:thrussh:*:*:*:*:*:*:*:*

Configuration 22 [-]

cpe:2.3:a:tera_term_project:tera_term:*:*:*:*:*:*:*:*

Configuration 23 [-]

cpe:2.3:a:oryx-embedded:cyclone_ssh:*:*:*:*:*:*:*:*

Configuration 24 [-]

cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*

Configuration 25 [-]

cpe:2.3:a:netsarang:xshell_7:*:*:*:*:*:*:*:*

Configuration 26 [-]

cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*

Configuration 27 [-]

cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*

Configuration 28 [-]

OR cpe:2.3:a:redhat:openstack_platform:16.1:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openstack_platform:16.2:*:*:*:*:*:*:*
cpe:2.3:a:redhat:openstack_platform:17.1:*:*:*:*:*:*:*

Configuration 29 [-]

cpe:2.3:a:redhat:ceph_storage:6.0:*:*:*:*:*:*:*

Configuration 30 [-]

OR cpe:2.3:o:redhat:enterprise_linux:8.0:*:*:*:*:*:*:*
cpe:2.3:o:redhat:enterprise_linux:9.0:*:*:*:*:*:*:*

Configuration 31 [-]

cpe:2.3:a:redhat:openshift_serverless:-:*:*:*:*:*:*:*

Configuration 32 [-]

cpe:2.3:a:redhat:openshift_gitops:-:*:*:*:*:*:*:*

Configuration 33 [-]

cpe:2.3:a:redhat:openshift_pipelines:-:*:*:*:*:*:*:*

Configuration 34 [-]

cpe:2.3:a:redhat:openshift_developer_tools_and_services:-:*:*:*:*:*:*:*

Configuration 35 [-]

cpe:2.3:a:redhat:openshift_data_foundation:4.0:*:*:*:*:*:*:*

Configuration 36 [-]

cpe:2.3:a:redhat:openshift_api_for_data_protection:-:*:*:*:*:*:*:*

Configuration 37 [-]

cpe:2.3:a:redhat:openshift_virtualization:4:*:*:*:*:*:*:*

Configuration 38 [-]

cpe:2.3:a:redhat:storage:3.0:*:*:*:*:*:*:*

Configuration 39 [-]

cpe:2.3:a:redhat:discovery:-:*:*:*:*:*:*:*

Configuration 40 [-]

cpe:2.3:a:redhat:openshift_dev_spaces:-:*:*:*:*:*:*:*

Configuration 41 [-]

cpe:2.3:a:redhat:cert-manager_operator_for_red_hat_openshift:-:*:*:*:*:*:*:*

Configuration 42 [-]

cpe:2.3:a:redhat:keycloak:-:*:*:*:*:*:*:*

Configuration 43 [-]

cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.0:*:*:*:*:*:*:*

Configuration 44 [-]

cpe:2.3:a:redhat:single_sign-on:7.0:*:*:*:*:*:*:*

Configuration 45 [-]

OR cpe:2.3:a:redhat:advanced_cluster_security:3.0:*:*:*:*:*:*:*
cpe:2.3:a:redhat:advanced_cluster_security:4.0:*:*:*:*:*:*:*

Configuration 46 [-]

cpe:2.3:a:golang:crypto:*:*:*:*:*:*:*:*

Configuration 47 [-]

cpe:2.3:a:russh_project:russh:*:*:*:*:*:rust:*:*

Configuration 48 [-]

cpe:2.3:a:sftpgo_project:sftpgo:*:*:*:*:*:*:*:*

Configuration 49 [-]

OR cpe:2.3:a:erlang:erlang\/otp:*:*:*:*:*:*:*:*
cpe:2.3:a:erlang:erlang\/otp:*:*:*:*:*:*:*:*
cpe:2.3:a:erlang:erlang\/otp:*:*:*:*:*:*:*:*
cpe:2.3:a:erlang:erlang\/otp:*:*:*:*:*:*:*:*
cpe:2.3:a:erlang:erlang\/otp:*:*:*:*:*:*:*:*

Configuration 50 [-]

cpe:2.3:a:matez:jsch:*:*:*:*:*:*:*:*

Configuration 51 [-]

cpe:2.3:a:libssh2:libssh2:*:*:*:*:*:*:*:*

Configuration 52 [-]

cpe:2.3:a:asyncssh_project:asyncssh:*:*:*:*:*:*:*:*

Configuration 53 [-]

cpe:2.3:a:dropbear_ssh_project:dropbear_ssh:*:*:*:*:*:*:*:*

Configuration 54 [-]

cpe:2.3:a:jadaptive:maverick_synergy_java_ssh_api:*:*:*:*:*:*:*:*

Configuration 55 [-]

OR cpe:2.3:a:ssh:ssh:*:*:*:*:*:*:*:*
cpe:2.3:a:ssh:ssh:*:*:*:*:*:*:*:*
cpe:2.3:a:ssh:ssh:*:*:*:*:*:*:*:*
cpe:2.3:a:ssh:ssh:*:*:*:*:*:*:*:*
cpe:2.3:a:ssh:ssh:*:*:*:*:*:*:*:*

Configuration 56 [-]

cpe:2.3:o:thorntech:sftp_gateway_firmware:*:*:*:*:*:*:*:*

Configuration 57 [-]

cpe:2.3:a:netgate:pfsense_plus:*:*:*:*:*:*:*:*

Configuration 58 [-]

cpe:2.3:a:netgate:pfsense_ce:*:*:*:*:*:*:*:*

Configuration 59 [-]

cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*

Configuration 60 [-]

cpe:2.3:a:connectbot:sshlib:*:*:*:*:*:*:*:*

Configuration 61 [-]

cpe:2.3:a:apache:sshd:*:*:*:*:*:*:*:*

Configuration 62 [-]

cpe:2.3:a:apache:sshj:*:*:*:*:*:*:*:*

Configuration 63 [-]

cpe:2.3:a:tinyssh:tinyssh:*:*:*:*:*:*:*:*

Configuration 64 [-]

cpe:2.3:a:trilead:ssh2:6401:*:*:*:*:*:*:*

Configuration 65 [-]

cpe:2.3:a:9bis:kitty:*:*:*:*:*:*:*:*

Configuration 66 [-]

AND
cpe:2.3:a:gentoo:security:-:*:*:*:*:*:*:*
cpe:2.3:o:debian:debian_linux:-:*:*:*:*:*:*:*

Configuration 67 [-]

OR cpe:2.3:o:fedoraproject:fedora:38:*:*:*:*:*:*:*
cpe:2.3:o:fedoraproject:fedora:39:*:*:*:*:*:*:*

Configuration 68 [-]

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 69 [-]

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*
Package CPE Advisory Released Date
EAP 8.0.1
apache-sshd cpe:/a:redhat:jboss_enterprise_application_platform:8.0 RHSA-2024:1194 2024-03-06T00:00:00Z
OADP-1.3-RHEL-9
oadp/oadp-velero-rhel9:1.3.1-16 cpe:/a:redhat:openshift_api_data_protection:1.3::el9 RHSA-2024:1859 2024-04-16T00:00:00Z
OCP-Tools-4.12-RHEL-8
jenkins-0:2.440.3.1716445200-3.el8 cpe:/a:redhat:ocp_tools:4.12::el8 RHSA-2024:3635 2024-06-05T00:00:00Z
jenkins-2-plugins-0:4.12.1716445211-1.el8 cpe:/a:redhat:ocp_tools:4.12::el8 RHSA-2024:3635 2024-06-05T00:00:00Z
OCP-Tools-4.13-RHEL-8
jenkins-0:2.440.3.1716445150-3.el8 cpe:/a:redhat:ocp_tools:4.13::el8 RHSA-2024:3636 2024-06-05T00:00:00Z
jenkins-2-plugins-0:4.13.1716445207-1.el8 cpe:/a:redhat:ocp_tools:4.13::el8 RHSA-2024:3636 2024-06-05T00:00:00Z
OCP-Tools-4.14-RHEL-8
jenkins-0:2.440.3.1716387933-3.el8 cpe:/a:redhat:ocp_tools:4.14::el8 RHSA-2024:3634 2024-06-05T00:00:00Z
jenkins-2-plugins-0:4.14.1716388016-1.el8 cpe:/a:redhat:ocp_tools:4.14::el8 RHSA-2024:3634 2024-06-05T00:00:00Z
OCP-Tools-4.15-RHEL-8
jenkins-0:2.440.3.1718879390-3.el8 cpe:/a:redhat:ocp_tools:4.15::el8 RHSA-2024:4597 2024-07-17T00:00:00Z
jenkins-2-plugins-0:4.15.1718879538-1.el8 cpe:/a:redhat:ocp_tools:4.15::el8 RHSA-2024:4597 2024-07-17T00:00:00Z
OPENSHIFT-BUILDS-1.0-RHEL-8
openshift-builds/openshift-builds-controller-rhel8:v1.0.1-4 cpe:/a:redhat:openshift_builds:1.0::el8 RHSA-2024:1557 2024-03-28T00:00:00Z
openshift-builds/openshift-builds-git-cloner-rhel8:v1.0.1-4 cpe:/a:redhat:openshift_builds:1.0::el8 RHSA-2024:1557 2024-03-28T00:00:00Z
openshift-builds/openshift-builds-image-bundler-rhel8:v1.0.1-4 cpe:/a:redhat:openshift_builds:1.0::el8 RHSA-2024:1557 2024-03-28T00:00:00Z
openshift-builds/openshift-builds-image-processing-rhel8:v1.0.1-4 cpe:/a:redhat:openshift_builds:1.0::el8 RHSA-2024:1557 2024-03-28T00:00:00Z
openshift-builds/openshift-builds-operator-bundle:v1.0.1-11 cpe:/a:redhat:openshift_builds:1.0::el8 RHSA-2024:1557 2024-03-28T00:00:00Z
openshift-builds/openshift-builds-rhel8-operator:v1.0.1-6 cpe:/a:redhat:openshift_builds:1.0::el8 RHSA-2024:1557 2024-03-28T00:00:00Z
openshift-builds/openshift-builds-waiters-rhel8:v1.0.1-4 cpe:/a:redhat:openshift_builds:1.0::el8 RHSA-2024:1557 2024-03-28T00:00:00Z
openshift-builds/openshift-builds-webhook-rhel8:v1.0.1-4 cpe:/a:redhat:openshift_builds:1.0::el8 RHSA-2024:1557 2024-03-28T00:00:00Z
Openshift Serverless 1 on RHEL 8
openshift-serverless-clients-0:1.10.0-6.el8 cpe:/a:redhat:serverless:1.0::el8 RHSA-2024:0880 2024-02-20T00:00:00Z
Red Hat Ceph Storage 7.1
ceph-2:18.2.1-329.el9cp cpe:/a:redhat:ceph_storage:7.1::el8 RHSA-2025:4664 2025-05-07T00:00:00Z
oath-toolkit-0:2.6.12-1.el8cp cpe:/a:redhat:ceph_storage:7.1::el8 RHSA-2025:4664 2025-05-07T00:00:00Z
Red Hat Enterprise Linux 8
openssh-0:8.0p1-19.el8_9.2 cpe:/a:redhat:enterprise_linux:8 RHSA-2024:0606 2024-01-30T00:00:00Z
libssh-0:0.9.6-13.el8_9 cpe:/a:redhat:enterprise_linux:8 RHSA-2024:0628 2024-01-31T00:00:00Z
container-tools:rhel8-8100020240227110532.82888897 cpe:/a:redhat:enterprise_linux:8 RHSA-2024:2988 2024-05-22T00:00:00Z
openssh-0:8.0p1-19.el8_9.2 cpe:/o:redhat:enterprise_linux:8 RHSA-2024:0606 2024-01-30T00:00:00Z
libssh-0:0.9.6-13.el8_9 cpe:/o:redhat:enterprise_linux:8 RHSA-2024:0628 2024-01-31T00:00:00Z
Red Hat Enterprise Linux 8.6 Extended Update Support
openssh-0:8.0p1-15.el8_6.3 cpe:/a:redhat:rhel_eus:8.6 RHSA-2024:0429 2024-01-25T00:00:00Z
libssh-0:0.9.6-4.el8_6 cpe:/a:redhat:rhel_eus:8.6 RHSA-2024:0538 2024-01-29T00:00:00Z
Red Hat Enterprise Linux 8.8 Extended Update Support
openssh-0:8.0p1-19.el8_8.2 cpe:/a:redhat:rhel_eus:8.8 RHSA-2024:0594 2024-01-30T00:00:00Z
libssh-0:0.9.6-13.el8_8 cpe:/a:redhat:rhel_eus:8.8 RHSA-2024:0625 2024-01-31T00:00:00Z
Red Hat Enterprise Linux 9
libssh-0:0.10.4-12.el9_3 cpe:/a:redhat:enterprise_linux:9 RHBA-2024:1127 2024-03-05T00:00:00Z
podman-2:4.6.1-8.el9_3 cpe:/a:redhat:enterprise_linux:9 RHBA-2024:1136 2024-03-05T00:00:00Z
openssh-0:8.7p1-34.el9_3.3 cpe:/a:redhat:enterprise_linux:9 RHSA-2024:1130 2024-03-05T00:00:00Z
buildah-1:1.31.4-1.el9_3 cpe:/a:redhat:enterprise_linux:9 RHSA-2024:1150 2024-03-05T00:00:00Z
libssh-0:0.10.4-12.el9_3 cpe:/o:redhat:enterprise_linux:9 RHBA-2024:1127 2024-03-05T00:00:00Z
openssh-0:8.7p1-34.el9_3.3 cpe:/o:redhat:enterprise_linux:9 RHSA-2024:1130 2024-03-05T00:00:00Z
Red Hat Enterprise Linux 9.2 Extended Update Support
openssh-0:8.7p1-30.el9_2.3 cpe:/a:redhat:rhel_eus:9.2 RHSA-2024:0455 2024-01-25T00:00:00Z
libssh-0:0.10.4-9.el9_2 cpe:/a:redhat:rhel_eus:9.2 RHSA-2024:0499 2024-01-25T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7
cpe:/a:redhat:jboss_enterprise_application_platform:7.4 RHSA-2024:1197 2024-03-06T00:00:00Z
apache-sshd cpe:/a:redhat:jboss_enterprise_application_platform:7.4 RHSA-2024:1677 2024-04-04T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 8
eap7-apache-sshd-0:2.12.1-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1196 2024-03-06T00:00:00Z
eap7-activemq-artemis-0:2.16.0-18.redhat_00052.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-apache-cxf-0:3.4.10-2.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-eclipse-jgit-0:5.13.3.202401111512-1.r_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-elytron-web-0:1.9.4-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-hal-console-0:3.3.21-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-hibernate-0:5.3.36-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-infinispan-0:11.0.18-2.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-insights-java-client-0:1.1.2-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-jberet-0:1.3.9-3.SP3_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-jboss-annotations-api_1.3_spec-0:2.0.1-3.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-jboss-cert-helper-0:1.1.2-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-jboss-remoting-0:5.0.27-4.SP2_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-jboss-server-migration-0:1.10.0-35.Final_redhat_00034.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-jboss-xnio-base-0:3.8.12-1.SP2_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-jgroups-kubernetes-0:1.0.17-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-lucene-solr-0:5.5.5-6.redhat_2.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-undertow-0:2.2.30-1.SP1_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-wildfly-0:7.4.16-4.GA_redhat_00002.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
eap7-wildfly-elytron-0:1.15.22-1.Final_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8 RHSA-2024:1675 2024-04-04T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 9
eap7-apache-sshd-0:2.12.1-1.redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1196 2024-03-06T00:00:00Z
eap7-activemq-artemis-0:2.16.0-18.redhat_00052.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-apache-cxf-0:3.4.10-2.redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-eclipse-jgit-0:5.13.3.202401111512-1.r_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-elytron-web-0:1.9.4-1.Final_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-hal-console-0:3.3.21-1.Final_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-hibernate-0:5.3.36-1.Final_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-infinispan-0:11.0.18-2.Final_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-insights-java-client-0:1.1.2-1.redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-jberet-0:1.3.9-3.SP3_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-jboss-annotations-api_1.3_spec-0:2.0.1-3.Final_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-jboss-cert-helper-0:1.1.2-1.redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-jboss-remoting-0:5.0.27-4.SP2_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-jboss-server-migration-0:1.10.0-35.Final_redhat_00034.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-jboss-xnio-base-0:3.8.12-1.SP2_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-jgroups-kubernetes-0:1.0.17-1.Final_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-lucene-solr-0:5.5.5-6.redhat_2.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-undertow-0:2.2.30-1.SP1_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-wildfly-0:7.4.16-4.GA_redhat_00002.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
eap7-wildfly-elytron-0:1.15.22-1.Final_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9 RHSA-2024:1676 2024-04-04T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7
eap7-apache-sshd-0:2.12.1-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1196 2024-03-06T00:00:00Z
eap7-activemq-artemis-0:2.16.0-18.redhat_00052.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-apache-cxf-0:3.4.10-2.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-eclipse-jgit-0:5.13.3.202401111512-1.r_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-elytron-web-0:1.9.4-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-hal-console-0:3.3.21-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-hibernate-0:5.3.36-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-infinispan-0:11.0.18-2.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-insights-java-client-0:1.1.2-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-jberet-0:1.3.9-3.SP3_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-jboss-annotations-api_1.3_spec-0:2.0.1-3.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-jboss-cert-helper-0:1.1.2-1.redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-jboss-remoting-0:5.0.27-4.SP2_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-jboss-server-migration-0:1.10.0-35.Final_redhat_00034.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-jboss-xnio-base-0:3.8.12-1.SP2_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-jgroups-kubernetes-0:1.0.17-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-lucene-solr-0:5.5.5-6.redhat_2.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-undertow-0:2.2.30-1.SP1_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-wildfly-0:7.4.16-4.GA_redhat_00002.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
eap7-wildfly-elytron-0:1.15.22-1.Final_redhat_00001.1.el7eap cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7 RHSA-2024:1674 2024-04-04T00:00:00Z
Red Hat JBoss Enterprise Application Platform 8.0 for RHEL 8
eap8-apache-sshd-0:2.12.0-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el8 RHSA-2024:1192 2024-03-06T00:00:00Z
eap8-eclipse-jgit-0:6.6.1.202309021850-1.r_redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el8 RHSA-2024:1192 2024-03-06T00:00:00Z
eap8-log4j-0:2.19.0-2.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el8 RHSA-2024:1192 2024-03-06T00:00:00Z
eap8-lucene-solr-0:8.11.2-2.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el8 RHSA-2024:1192 2024-03-06T00:00:00Z
eap8-parsson-0:1.1.5-1.redhat_00001.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el8 RHSA-2024:1192 2024-03-06T00:00:00Z
eap8-wildfly-0:8.0.1-3.GA_redhat_00002.1.el8eap cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el8 RHSA-2024:1192 2024-03-06T00:00:00Z
Red Hat JBoss Enterprise Application Platform 8.0 for RHEL 9
eap8-apache-sshd-0:2.12.0-1.redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el9 RHSA-2024:1193 2024-03-06T00:00:00Z
eap8-eclipse-jgit-0:6.6.1.202309021850-1.r_redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el9 RHSA-2024:1193 2024-03-06T00:00:00Z
eap8-log4j-0:2.19.0-2.redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el9 RHSA-2024:1193 2024-03-06T00:00:00Z
eap8-lucene-solr-0:8.11.2-2.redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el9 RHSA-2024:1193 2024-03-06T00:00:00Z
eap8-parsson-0:1.1.5-1.redhat_00001.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el9 RHSA-2024:1193 2024-03-06T00:00:00Z
eap8-wildfly-0:8.0.1-3.GA_redhat_00002.1.el9eap cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el9 RHSA-2024:1193 2024-03-06T00:00:00Z
Red Hat OpenShift Container Platform 4.12
openshift4/ose-olm-rukpak-rhel8:v4.12.0-202408072016.p0.gf219ce7.assembly.stream.el8 cpe:/a:redhat:openshift:4.12::el8 RHSA-2024:5200 2024-08-19T00:00:00Z
Red Hat OpenShift Container Platform 4.13
openshift4/ose-olm-rukpak-rhel8:v4.13.0-202407081338.p0.gaf47118.assembly.stream.el8 cpe:/a:redhat:openshift:4.13::el8 RHSA-2024:4484 2024-07-17T00:00:00Z
Red Hat OpenShift Container Platform 4.14
podman-3:4.4.1-14.4.rhaos4.14.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:3918 2024-06-19T00:00:00Z
openshift4/ose-olm-rukpak-rhel8:v4.14.0-202406180839.p0.gc9409c6.assembly.stream.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:4010 2024-06-26T00:00:00Z
openshift4/ose-azure-cluster-api-controllers-rhel8:v4.14.0-202407021509.p0.g81b4d03.assembly.stream.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:4329 2024-07-11T00:00:00Z
openshift4/ose-cluster-capi-operator-container-rhel8:v4.14.0-202407021509.p0.g166561f.assembly.stream.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:4329 2024-07-11T00:00:00Z
openshift4/ose-cluster-capi-rhel8-operator:v4.14.0-202407021509.p0.g166561f.assembly.stream.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:4329 2024-07-11T00:00:00Z
openshift4/ose-machine-api-provider-azure-rhel8:v4.14.0-202407021509.p0.gae97901.assembly.stream.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:4329 2024-07-11T00:00:00Z
openshift4/ose-vsphere-cluster-api-controllers-rhel8:v4.14.0-202407021509.p0.gb5346ad.assembly.stream.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:4329 2024-07-11T00:00:00Z
openshift4/ose-azure-disk-csi-driver-rhel8:v4.14.0-202407090841.p0.g6d3558a.assembly.stream.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:4479 2024-07-17T00:00:00Z
openshift4/ose-aws-efs-csi-driver-container-rhel8:v4.14.0-202407120139.p0.g18d04fd.assembly.stream.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:4959 2024-08-07T00:00:00Z
openshift4/ose-aws-ebs-csi-driver-rhel8:v4.14.0-202407120139.p0.g4622dee.assembly.stream.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:4960 2024-08-07T00:00:00Z
openshift4/egress-router-cni-rhel8:v4.14.0-202408070332.p0.g96f2f54.assembly.stream.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:5433 2024-08-22T00:00:00Z
openshift4/ose-hyperkube-rhel9:v4.14.0-202409041843.p0.g03a907c.assembly.stream.el9 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:6406 2024-09-11T00:00:00Z
openshift4/ose-tools-rhel8:v4.14.0-202408260910.p0.g44b3ac2.assembly.stream.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:6406 2024-09-11T00:00:00Z
openshift4/ose-installer:v4.14.0-202410120808.p0.gb6457e9.assembly.stream.el8 cpe:/a:redhat:openshift:4.14::el8 RHSA-2024:8235 2024-10-23T00:00:00Z
openshift4/ose-ptp-rhel9:v4.14.0-202408090010.p0.g3f4aba2.assembly.stream.el9 cpe:/a:redhat:openshift:4.14::el9 RHSA-2024:5432 2024-08-21T00:00:00Z
Red Hat OpenShift Container Platform 4.15
openshift4/ose-aws-ebs-csi-driver-rhel9:v4.15.0-202401261531.p0.gb692edb.assembly.stream cpe:/a:redhat:openshift:4.15::el8 RHSA-2023:7198 2024-02-27T00:00:00Z
openshift4/ose-azure-disk-csi-driver-rhel9:v4.15.0-202401261531.p0.gdcb7e1c.assembly.stream cpe:/a:redhat:openshift:4.15::el8 RHSA-2023:7198 2024-02-27T00:00:00Z
openshift4/ose-azure-file-csi-driver-rhel9:v4.15.0-202401261531.p0.g364d90d.assembly.stream cpe:/a:redhat:openshift:4.15::el8 RHSA-2023:7198 2024-02-27T00:00:00Z
openshift4/ose-csi-external-provisioner:v4.15.0-202402082307.p0.gce5a1a3.assembly.stream.el8 cpe:/a:redhat:openshift:4.15::el8 RHSA-2023:7198 2024-02-27T00:00:00Z
openshift4/ose-csi-external-provisioner-rhel8:v4.15.0-202402082307.p0.gce5a1a3.assembly.stream.el8 cpe:/a:redhat:openshift:4.15::el8 RHSA-2023:7198 2024-02-27T00:00:00Z
openshift4/ose-ibmcloud-cluster-api-controllers-rhel9:v4.15.0-202402191538.p0.g34fb625.assembly.stream.el9 cpe:/a:redhat:openshift:4.15::el8 RHSA-2023:7198 2024-02-27T00:00:00Z
openshift4/ose-olm-rukpak-rhel8:v4.15.0-202402082307.p0.g36acf8d.assembly.stream.el8 cpe:/a:redhat:openshift:4.15::el8 RHSA-2023:7198 2024-02-27T00:00:00Z
openshift4/ose-vsphere-csi-driver-syncer-rhel9:v4.15.0-202401261531.p0.g74481e3.assembly.stream cpe:/a:redhat:openshift:4.15::el8 RHSA-2023:7198 2024-02-27T00:00:00Z
podman-3:4.4.1-21.rhaos4.15.el8 cpe:/a:redhat:openshift:4.15::el8 RHSA-2023:7201 2024-02-27T00:00:00Z
openshift4/ose-aws-efs-csi-driver-container-rhel8:v4.15.0-202402051038.p0.g5af4e87.assembly.stream cpe:/a:redhat:openshift:4.15::el8 RHSA-2024:0766 2024-02-28T00:00:00Z
openshift4/ose-baremetal-installer-rhel8:v4.15.0-202406251908.p0.g132530d.assembly.stream.el8 cpe:/a:redhat:openshift:4.15::el8 RHSA-2024:4151 2024-07-02T00:00:00Z
openshift4/ose-installer:v4.15.0-202406251908.p0.g132530d.assembly.stream.el8 cpe:/a:redhat:openshift:4.15::el8 RHSA-2024:4151 2024-07-02T00:00:00Z
openshift4/ose-installer-artifacts:v4.15.0-202406251908.p0.g132530d.assembly.stream.el8 cpe:/a:redhat:openshift:4.15::el8 RHSA-2024:4151 2024-07-02T00:00:00Z
openshift4/egress-router-cni-rhel8:v4.15.0-202407302337.p0.gf8ec690.assembly.stream.el8 cpe:/a:redhat:openshift:4.15::el8 RHSA-2024:4955 2024-08-07T00:00:00Z
openshift4/ose-node-feature-discovery-rhel9:v4.15.0-202401311148.p0.ge4929ab.assembly.stream cpe:/a:redhat:openshift:4.15::el9 RHSA-2023:7197 2024-02-27T00:00:00Z
openshift4-wincw/windows-machine-config-operator-bundle:v10.15.0-43 cpe:/a:redhat:openshift:4.15::el9 RHSA-2024:0954 2024-02-27T00:00:00Z
openshift4-wincw/windows-machine-config-rhel9-operator:10.15.0-46 cpe:/a:redhat:openshift:4.15::el9 RHSA-2024:0954 2024-02-27T00:00:00Z
openshift4/ose-cluster-capi-rhel9-operator:v4.15.0-202403050707.p0.gc8c94ba.assembly.stream.el9 cpe:/a:redhat:openshift:4.15::el9 RHSA-2024:1210 2024-03-13T00:00:00Z
openshift4/ose-machine-api-provider-azure-rhel9:v4.15.0-202403050707.p0.g90771ab.assembly.stream.el9 cpe:/a:redhat:openshift:4.15::el9 RHSA-2024:1210 2024-03-13T00:00:00Z
openshift4/ose-vsphere-cluster-api-controllers-rhel9:v4.15.0-202403050707.p0.g2070c13.assembly.stream.el9 cpe:/a:redhat:openshift:4.15::el9 RHSA-2024:1210 2024-03-13T00:00:00Z
openshift4/ose-ptp-rhel9:v4.15.0-202408130908.p0.gcb7ef64.assembly.stream.el9 cpe:/a:redhat:openshift:4.15::el9 RHSA-2024:5438 2024-08-21T00:00:00Z
Red Hat OpenShift Container Platform 4.16
openshift4/ose-aws-efs-csi-driver-container-rhel9:v4.16.0-202406131906.p0.gbe9a76c.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0040 2024-06-27T00:00:00Z
openshift4/ose-node-feature-discovery-rhel9:v4.16.0-202406131906.p0.gb93abef.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0040 2024-06-27T00:00:00Z
openshift4/ose-ptp-rhel9:v4.16.0-202406131906.p0.g4447317.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0040 2024-06-27T00:00:00Z
openshift4/ose-aws-ebs-csi-driver-rhel9:v4.16.0-202406131906.p0.g1d29a74.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0041 2024-06-27T00:00:00Z
openshift4/ose-azure-cluster-api-controllers-rhel9:v4.16.0-202406131906.p0.gface7da.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0041 2024-06-27T00:00:00Z
openshift4/ose-azure-disk-csi-driver-rhel9:v4.16.0-202406131906.p0.g6b55f6f.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0041 2024-06-27T00:00:00Z
openshift4/ose-azure-file-csi-driver-rhel9:v4.16.0-202406131906.p0.g5ceb190.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0041 2024-06-27T00:00:00Z
openshift4/ose-cluster-capi-rhel9-operator:v4.16.0-202406131906.p0.ga24f1ae.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0041 2024-06-27T00:00:00Z
openshift4/ose-csi-external-provisioner-rhel9:v4.16.0-202406131906.p0.g9e8af01.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0041 2024-06-27T00:00:00Z
openshift4/ose-machine-api-provider-azure-rhel9:v4.16.0-202406131906.p0.gd6be293.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0041 2024-06-27T00:00:00Z
openshift4/ose-powervs-block-csi-driver-rhel9:v4.16.0-202406131906.p0.g730a473.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0041 2024-06-27T00:00:00Z
openshift4/ose-vsphere-cluster-api-controllers-rhel9:v4.16.0-202406131906.p0.gbe22f10.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0041 2024-06-27T00:00:00Z
openshift4/ose-vsphere-csi-driver-syncer-rhel9:v4.16.0-202406131906.p0.g3cd689f.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:0041 2024-06-27T00:00:00Z
openshift4/egress-router-cni-rhel9:v4.16.0-202407180206.p0.g7089efe.assembly.stream.el9 cpe:/a:redhat:openshift:4.16::el9 RHSA-2024:4613 2024-07-24T00:00:00Z
Red Hat OpenShift Container Platform 4.17
openshift4/egress-router-cni-rhel9:v4.17.0-202409100034.p0.g3193a75.assembly.stream.el9 cpe:/a:redhat:openshift:4.17::el9 RHSA-2024:3718 2024-10-01T00:00:00Z
openshift4/ose-docker-builder-rhel9:v4.17.0-202409122005.p1.gcfcf3bd.assembly.stream.el9 cpe:/a:redhat:openshift:4.17::el9 RHSA-2024:3718 2024-10-01T00:00:00Z
Red Hat OpenStack Platform 16.2
rhosp-rhel8/osp-director-agent:1.3.0-14 cpe:/a:redhat:openstack:16.2::el8 RHSA-2024:3479 2024-05-29T00:00:00Z
rhosp-rhel8/osp-director-downloader:1.3.0-14 cpe:/a:redhat:openstack:16.2::el8 RHSA-2024:3479 2024-05-29T00:00:00Z
rhosp-rhel8/osp-director-operator:1.3.0-12 cpe:/a:redhat:openstack:16.2::el8 RHSA-2024:3479 2024-05-29T00:00:00Z
rhosp-rhel8/osp-director-operator-bundle:1.3.0-26 cpe:/a:redhat:openstack:16.2::el8 RHSA-2024:3479 2024-05-29T00:00:00Z
Red Hat OpenStack Platform 17.1 for RHEL 8
python-paramiko-0:2.11.0-2.el8ost cpe:/a:redhat:openstack:17.1::el8 RHSA-2024:2768 2024-05-22T00:00:00Z
Red Hat OpenStack Platform 17.1 for RHEL 9
rhosp-rhel9/osp-director-agent:1.3.1-15 cpe:/a:redhat:openstack:17.1::el9 RHSA-2024:2728 2024-05-29T00:00:00Z
rhosp-rhel9/osp-director-downloader:1.3.1-13 cpe:/a:redhat:openstack:17.1::el9 RHSA-2024:2728 2024-05-29T00:00:00Z
rhosp-rhel9/osp-director-operator:1.3.1-15 cpe:/a:redhat:openstack:17.1::el9 RHSA-2024:2728 2024-05-29T00:00:00Z
rhosp-rhel9/osp-director-operator-bundle:1.3.1-27 cpe:/a:redhat:openstack:17.1::el9 RHSA-2024:2728 2024-05-29T00:00:00Z
python-paramiko-0:2.11.0-2.el9ost cpe:/a:redhat:openstack:17.1::el9 RHSA-2024:2735 2024-05-22T00:00:00Z
RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)
cpe:/a:redhat:camel_quarkus:3 RHSA-2024:0789 2024-02-12T00:00:00Z
RHEL-9-CNV-4.15
container-native-virtualization/cluster-network-addons-operator-rhel9:v4.15.3-7 cpe:/a:redhat:container_native_virtualization:4.15::el9 RHSA-2024:4662 2024-07-18T00:00:00Z
RHODF-4.15-RHEL-9
odf4/cephcsi-rhel9:v4.15.0-37 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/mcg-core-rhel9:v4.15.0-68 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/mcg-operator-bundle:v4.15.0-158 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/mcg-rhel9-operator:v4.15.0-39 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/ocs-client-console-rhel9:v4.15.0-58 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/ocs-client-operator-bundle:v4.15.0-158 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/ocs-client-rhel9-operator:v4.15.0-13 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/ocs-metrics-exporter-rhel9:v4.15.0-81 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/ocs-operator-bundle:v4.15.0-158 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/ocs-rhel9-operator:v4.15.0-79 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odf-cli-rhel9:v4.15.0-22 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odf-console-rhel9:v4.15.0-57 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odf-cosi-sidecar-rhel9:v4.15.0-6 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odf-csi-addons-operator-bundle:v4.15.0-158 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odf-csi-addons-rhel9-operator:v4.15.0-15 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odf-csi-addons-sidecar-rhel9:v4.15.0-15 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odf-multicluster-console-rhel9:v4.15.0-54 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odf-multicluster-operator-bundle:v4.15.0-158 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odf-multicluster-rhel9-operator:v4.15.0-10 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odf-must-gather-rhel9:v4.15.0-26 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odf-operator-bundle:v4.15.0-158 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odf-rhel9-operator:v4.15.0-19 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odr-cluster-operator-bundle:v4.15.0-158 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odr-hub-operator-bundle:v4.15.0-158 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/odr-rhel9-operator:v4.15.0-21 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
odf4/rook-ceph-rhel9-operator:v4.15.0-103 cpe:/a:redhat:openshift_data_foundation:4.15::el9 RHSA-2024:1383 2024-03-19T00:00:00Z
RHOSS-1.31-RHEL-8
openshift-serverless-1/client-kn-rhel8:1.10.0-5 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-controller-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-in-memory-channel-controller-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-istio-controller-rhel8:1.10.0-5 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-controller-rhel8:1.10.0-3 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8:1.10.0-3 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-post-install-rhel8:1.10.0-3 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-receiver-rhel8:1.10.0-3 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-webhook-rhel8:1.10.0-3 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-mtbroker-filter-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-mtbroker-ingress-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-mtchannel-broker-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-mtping-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-storage-version-migration-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/eventing-webhook-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/func-utils-rhel8:1.31.1-2 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/ingress-rhel8-operator:1.31.1-2 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/knative-rhel8-operator:1.31.1-2 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/kn-cli-artifacts-rhel8:1.10.0-3 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/kourier-control-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/net-istio-controller-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/net-istio-webhook-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/serverless-operator-bundle:1.31.1-1 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/serverless-rhel8-operator:1.31.1-2 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/serving-activator-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/serving-autoscaler-hpa-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/serving-autoscaler-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/serving-controller-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/serving-domain-mapping-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/serving-domain-mapping-webhook-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/serving-queue-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/serving-storage-version-migration-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/serving-webhook-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1/svls-must-gather-rhel8:1.31.1-2 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8:1.10.0-5 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8:1.10.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1-tech-preview/logic-swf-builder-rhel8:1.31.0-5 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z
openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8:1.31.0-4 cpe:/a:redhat:openshift_serverless:1.31::el8 RHSA-2024:0843 2024-02-15T00:00:00Z

No data.

Project Subscriptions

Vendors Products
9bis Subscribe
Kitty Subscribe
Apache Subscribe
Sshd Subscribe
Sshj Subscribe
Apple Subscribe
Macos Subscribe
Asyncssh Project Subscribe
Asyncssh Subscribe
Bitvise Subscribe
Ssh Client Subscribe
Ssh Server Subscribe
Connectbot Subscribe
Sshlib Subscribe
Crates Subscribe
Thrussh Subscribe
Crushftp Subscribe
Crushftp Subscribe
Debian Subscribe
Debian Linux Subscribe
Dropbear Ssh Project Subscribe
Dropbear Ssh Subscribe
Erlang Subscribe
Erlang\/otp Subscribe
Fedoraproject Subscribe
Fedora Subscribe
Filezilla-project Subscribe
Filezilla Client Subscribe
Freebsd Subscribe
Freebsd Subscribe
Gentoo Subscribe
Security Subscribe
Golang Subscribe
Crypto Subscribe
Jadaptive Subscribe
Maverick Synergy Java Ssh Api Subscribe
Lancom-systems Subscribe
Lanconfig Subscribe
Lcos Subscribe
Lcos Fx Subscribe
Lcos Lx Subscribe
Lcos Sx Subscribe
Libssh Subscribe
Libssh Subscribe
Libssh2 Subscribe
Libssh2 Subscribe
Matez Subscribe
Jsch Subscribe
Net-ssh Subscribe
Net-ssh Subscribe
Netgate Subscribe
Pfsense Ce Subscribe
Pfsense Plus Subscribe
Netsarang Subscribe
Xshell 7 Subscribe
Openbsd Subscribe
Openssh Subscribe
Oryx-embedded Subscribe
Cyclone Ssh Subscribe
Panic Subscribe
Nova Subscribe
Transmit 5 Subscribe
Paramiko Subscribe
Paramiko Subscribe
Proftpd Subscribe
Proftpd Subscribe
Putty Subscribe
Putty Subscribe
Redhat Subscribe
Advanced Cluster Security Subscribe
Camel Quarkus Subscribe
Ceph Storage Subscribe
Cert-manager Operator For Red Hat Openshift Subscribe
Container Native Virtualization Subscribe
Discovery Subscribe
Enterprise Linux Subscribe
Jboss Enterprise Application Platform Subscribe
Keycloak Subscribe
Ocp Tools Subscribe
Openshift Subscribe
Openshift Api Data Protection Subscribe
Openshift Api For Data Protection Subscribe
Openshift Builds Subscribe
Openshift Container Platform Subscribe
Openshift Data Foundation Subscribe
Openshift Dev Spaces Subscribe
Openshift Developer Tools And Services Subscribe
Openshift Gitops Subscribe
Openshift Pipelines Subscribe
Openshift Serverless Subscribe
Openshift Virtualization Subscribe
Openstack Subscribe
Openstack Platform Subscribe
Rhel Eus Subscribe
Serverless Subscribe
Single Sign-on Subscribe
Storage Subscribe
Roumenpetrov Subscribe
Pkixssh Subscribe
Russh Project Subscribe
Russh Subscribe
Sftpgo Project Subscribe
Sftpgo Subscribe
Ssh Subscribe
Ssh Subscribe
Ssh2 Project Subscribe
Ssh2 Subscribe
Tera Term Project Subscribe
Tera Term Subscribe
Thorntech Subscribe
Sftp Gateway Firmware Subscribe
Tinyssh Subscribe
Tinyssh Subscribe
Trilead Subscribe
Ssh2 Subscribe
Vandyke Subscribe
Securecrt Subscribe
Winscp Subscribe
Winscp Subscribe
Advisories
Source ID Title
Debian DLA Debian DLA DLA-3694-1 openssh security update
Debian DLA Debian DLA DLA-3718-1 php-phpseclib security update
Debian DLA Debian DLA DLA-3719-1 phpseclib security update
Debian DLA Debian DLA DLA-3730-1 python-asyncssh security update
Debian DLA Debian DLA DLA-3794-1 putty security update
Debian DLA Debian DLA DLA-3899-1 python-asyncssh security update
Debian DLA Debian DLA DLA-3975-1 proftpd-dfsg security update
Debian DLA Debian DLA DLA-4132-1 erlang security update
Debian DSA Debian DSA DSA-5586-1 openssh security update
Debian DSA Debian DSA DSA-5588-1 putty security update
Debian DSA Debian DSA DSA-5591-1 libssh security update
Debian DSA Debian DSA DSA-5599-1 phpseclib security update
Debian DSA Debian DSA DSA-5600-1 php-phpseclib security update
Debian DSA Debian DSA DSA-5601-1 php-phpseclib3 security update
Debian DSA Debian DSA DSA-5750-1 python-asyncssh security update
Debian DSA Debian DSA DSA-5906-1 erlang security update
Github GHSA Github GHSA GHSA-45x7-px36-x8w8 Prefix Truncation Attack against ChaCha20-Poly1305 and Encrypt-then-MAC aka Terrapin
Ubuntu USN Ubuntu USN USN-6560-1 OpenSSH vulnerabilities
Ubuntu USN Ubuntu USN USN-6561-1 libssh vulnerability
Ubuntu USN Ubuntu USN USN-6560-2 OpenSSH vulnerabilities
Ubuntu USN Ubuntu USN USN-6585-1 libssh2 vulnerability
Ubuntu USN Ubuntu USN USN-6589-1 FileZilla vulnerability
Ubuntu USN Ubuntu USN USN-6598-1 Paramiko vulnerability
Ubuntu USN Ubuntu USN USN-6738-1 LXD vulnerability
Ubuntu USN Ubuntu USN USN-7051-1 AsyncSSH vulnerability
Ubuntu USN Ubuntu USN USN-7292-1 Dropbear vulnerabilities
Ubuntu USN Ubuntu USN USN-7297-1 ProFTPD vulnerabilities
Fixes

Solution

No solution given by the vendor.

Workaround

No workaround given by the vendor.

References
Link Providers
http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html cve-icon cve-icon
http://seclists.org/fulldisclosure/2024/Mar/21 cve-icon cve-icon
http://www.openwall.com/lists/oss-security/2023/12/18/3 cve-icon cve-icon
http://www.openwall.com/lists/oss-security/2023/12/19/5 cve-icon cve-icon
http://www.openwall.com/lists/oss-security/2023/12/20/3 cve-icon cve-icon
http://www.openwall.com/lists/oss-security/2024/03/06/3 cve-icon cve-icon
http://www.openwall.com/lists/oss-security/2024/04/17/8 cve-icon cve-icon
https://access.redhat.com/security/cve/cve-2023-48795 cve-icon cve-icon
https://access.redhat.com/solutions/7071748 cve-icon
https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/ cve-icon cve-icon
https://bugs.gentoo.org/920280 cve-icon cve-icon
https://bugzilla.redhat.com/show_bug.cgi?id=2254210 cve-icon cve-icon
https://bugzilla.suse.com/show_bug.cgi?id=1217950 cve-icon cve-icon
https://crates.io/crates/thrussh/versions cve-icon cve-icon
https://filezilla-project.org/versions.php cve-icon cve-icon
https://forum.netgate.com/topic/184941/terrapin-ssh-attack cve-icon cve-icon
https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6 cve-icon cve-icon
https://github.com/NixOS/nixpkgs/pull/275249 cve-icon cve-icon
https://github.com/PowerShell/Win32-OpenSSH/issues/2189 cve-icon cve-icon
https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta cve-icon cve-icon
https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0 cve-icon cve-icon
https://github.com/TeraTermProject/teraterm/releases/tag/v5.1 cve-icon cve-icon
https://github.com/advisories/GHSA-45x7-px36-x8w8 cve-icon cve-icon
https://github.com/apache/mina-sshd/issues/445 cve-icon cve-icon
https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab cve-icon cve-icon
https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22 cve-icon cve-icon
https://github.com/cyd01/KiTTY/issues/520 cve-icon cve-icon
https://github.com/drakkan/sftpgo/releases/tag/v2.5.6 cve-icon cve-icon
https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42 cve-icon cve-icon
https://github.com/erlang/otp/releases/tag/OTP-26.2.1 cve-icon cve-icon
https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d cve-icon cve-icon
https://github.com/hierynomus/sshj/issues/916 cve-icon cve-icon
https://github.com/janmojzis/tinyssh/issues/81 cve-icon cve-icon
https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5 cve-icon cve-icon
https://github.com/libssh2/libssh2/pull/1291 cve-icon cve-icon
https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25 cve-icon cve-icon
https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3 cve-icon cve-icon
https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15 cve-icon cve-icon
https://github.com/mwiede/jsch/issues/457 cve-icon cve-icon
https://github.com/mwiede/jsch/pull/461 cve-icon cve-icon
https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16 cve-icon cve-icon
https://github.com/openssh/openssh-portable/commits/master cve-icon cve-icon
https://github.com/paramiko/paramiko/issues/2337 cve-icon cve-icon
https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES cve-icon cve-icon
https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES cve-icon cve-icon
https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES cve-icon cve-icon
https://github.com/proftpd/proftpd/issues/456 cve-icon cve-icon
https://github.com/rapier1/hpn-ssh/releases cve-icon cve-icon
https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst cve-icon cve-icon
https://github.com/ronf/asyncssh/tags cve-icon cve-icon
https://github.com/ssh-mitm/ssh-mitm/issues/165 cve-icon cve-icon
https://github.com/warp-tech/russh/releases/tag/v0.40.2 cve-icon cve-icon
https://gitlab.com/libssh/libssh-mirror/-/tags cve-icon cve-icon
https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ cve-icon cve-icon
https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg cve-icon cve-icon
https://help.panic.com/releasenotes/transmit5/ cve-icon cve-icon
https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/ cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html cve-icon cve-icon
https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html cve-icon
https://lists.debian.org/debian-lts-announce/2024/11/msg00032.html cve-icon
https://lists.debian.org/debian-lts-announce/2025/04/msg00028.html cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/ cve-icon cve-icon
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/ cve-icon
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/ cve-icon
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/ cve-icon
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/ cve-icon
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/ cve-icon
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/ cve-icon
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/ cve-icon
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/ cve-icon
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/ cve-icon
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/ cve-icon
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/ cve-icon
https://matt.ucc.asn.au/dropbear/CHANGES cve-icon cve-icon
https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC cve-icon cve-icon
https://news.ycombinator.com/item?id=38684904 cve-icon cve-icon
https://news.ycombinator.com/item?id=38685286 cve-icon cve-icon
https://news.ycombinator.com/item?id=38732005 cve-icon cve-icon
https://nova.app/releases/#v11.8 cve-icon cve-icon
https://nvd.nist.gov/vuln/detail/CVE-2023-48795 cve-icon
https://oryx-embedded.com/download/#changelog cve-icon cve-icon
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002 cve-icon cve-icon
https://roumenpetrov.info/secsh/#news20231220 cve-icon cve-icon
https://security-tracker.debian.org/tracker/CVE-2023-48795 cve-icon cve-icon
https://security-tracker.debian.org/tracker/source-package/libssh2 cve-icon cve-icon
https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg cve-icon cve-icon
https://security-tracker.debian.org/tracker/source-package/trilead-ssh2 cve-icon cve-icon
https://security.gentoo.org/glsa/202312-16 cve-icon cve-icon
https://security.gentoo.org/glsa/202312-17 cve-icon cve-icon
https://security.netapp.com/advisory/ntap-20240105-0004/ cve-icon cve-icon
https://support.apple.com/kb/HT214084 cve-icon cve-icon
https://terrapin-attack.com/ cve-icon
https://thorntech.com/cve-2023-48795-and-sftp-gateway/ cve-icon cve-icon
https://twitter.com/TrueSkrillor/status/1736774389725565005 cve-icon cve-icon
https://ubuntu.com/security/CVE-2023-48795 cve-icon cve-icon
https://winscp.net/eng/docs/history#6.2.2 cve-icon cve-icon
https://www.bitvise.com/ssh-client-version-history#933 cve-icon cve-icon
https://www.bitvise.com/ssh-server-version-history cve-icon cve-icon
https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html cve-icon cve-icon
https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update cve-icon cve-icon
https://www.cve.org/CVERecord?id=CVE-2023-48795 cve-icon
https://www.debian.org/security/2023/dsa-5586 cve-icon cve-icon
https://www.debian.org/security/2023/dsa-5588 cve-icon cve-icon
https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc cve-icon cve-icon
https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508 cve-icon cve-icon
https://www.netsarang.com/en/xshell-update-history/ cve-icon cve-icon
https://www.openssh.com/openbsd.html cve-icon cve-icon
https://www.openssh.com/txt/release-9.6 cve-icon cve-icon
https://www.openwall.com/lists/oss-security/2023/12/18/2 cve-icon cve-icon
https://www.openwall.com/lists/oss-security/2023/12/20/3 cve-icon cve-icon
https://www.paramiko.org/changelog.html cve-icon cve-icon
https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/ cve-icon cve-icon
https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/ cve-icon cve-icon
https://www.terrapin-attack.com cve-icon cve-icon
https://www.theregister.com/2023/12/20/terrapin_attack_ssh cve-icon cve-icon
https://www.vandyke.com/products/securecrt/history.txt cve-icon cve-icon
https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit cve-icon
https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability cve-icon
History

Tue, 04 Nov 2025 22:30:00 +0000

Type Values Removed Values Added
References

Tue, 04 Nov 2025 19:30:00 +0000

Type Values Removed Values Added
References

Mon, 03 Nov 2025 22:30:00 +0000

Type Values Removed Values Added
References

Mon, 03 Nov 2025 20:30:00 +0000

Type Values Removed Values Added
References

Wed, 27 Aug 2025 21:15:00 +0000

Type Values Removed Values Added
Metrics ssvc

{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}

Wed, 16 Jul 2025 13:45:00 +0000

Type Values Removed Values Added
Metrics epss

{'score': 0.66819}

 epss

{'score': 0.75226}

Fri, 23 May 2025 02:45:00 +0000

Type Values Removed Values Added
CPEs cpe:2.3:a:microsoft:powershell:*:*:*:*:*:*:*:*
Vendors & Products Microsoft
Microsoft powershell

Wed, 14 May 2025 20:30:00 +0000

Type Values Removed Values Added
References

Thu, 08 May 2025 14:30:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:ceph_storage:7.1::el8

Wed, 02 Oct 2024 02:15:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:openshift:4.17::el9

Thu, 22 Aug 2024 06:15:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:openshift:4.14::el9

Mon, 19 Aug 2024 22:30:00 +0000

Type Values Removed Values Added
CPEs cpe:/a:redhat:openshift:4.12::el8

Projects

Sign in to view the affected projects.

cve-icon MITRE

Status: PUBLISHED

Assigner: mitre

Published:

Updated: 2025-11-04T22:05:21.417Z

Reserved: 2023-11-20T00:00:00.000Z

Link: CVE-2023-48795

cve-icon Vulnrichment

Updated: 2025-11-04T18:19:31.944Z

cve-icon NVD

Status : Modified

Published: 2023-12-18T16:15:10.897

Modified: 2025-11-04T22:15:55.110

Link: CVE-2023-48795

cve-icon Redhat

Severity : Moderate

Publid Date: 2023-12-18T00:00:00Z

Links: CVE-2023-48795 - Bugzilla

cve-icon OpenCVE Enrichment

No data.

Weaknesses