Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Openssh Number Of NVD 124 CRITICAL 6 HIGH 46 MEDIUM 60 LOW 12
URL https://www.openssh.com/
Explanation It is an SSH implementation developed by the OpenBSD project and used on many Unix and Linux systems.
It can also be used on Windows, as the OpenSSH client can be easily installed.
Tag
  • BSD License
  • オープンソース

Add Information URL
No Type Name URL
1 https://anongit.mindrot.org/openssh

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
101 OpenSSH 9 9.9p2 Feb. 18, 2025 April 8, 2022 3 4 10 0
102 OpenSSH 8 8.9 Feb. 23, 2022 April 17, 2019 3 9 11 1
103 OpenSSH 7 OpenSSH 7.9 Oct. 19, 2018 Aug. 11, 2015 3 14 22 1
104 OpenSSH 6 OpenSSH 6.9 July 1, 2015 April 22, 2012 3 16 28 2
105 OpenSSH 5 OpenSSH 5.9 Sept. 6, 2011 April 3, 2008 3 14 27 6
106 OpenSSH 4 OpenSSH 4.9 March 31, 2008 March 9, 2005 3 20 35 9
107 OpenSSH 3 OpenSSH 3.9 Aug. 18, 2004 Nov. 6, 2001 5 30 35 7
108 OpenSSH 8.4 8.4 2 5 10 1
109 OpenSSH 8.3 8.3 2 6 10 1
110 OpenSSH 8.2 8.2 2 7 10 1
111 OpenSSH 8.1 8.1 2 5 10 1
112 OpenSSH 8.0 8.0 2 6 10 1
113 OpenSSH 7.9 7.9 2 6 14 1
114 OpenSSH 7.8 7.8 2 6 15 1
115 OpenSSH 7.7 7.7 2 6 16 1
116 OpenSSH 7.6 7.6 2 5 16 1
117 OpenSSH 7.5 7.5 2 5 17 1
118 OpenSSH 7.4 7.4 2 5 17 1
119 OpenSSH 7.3 7.3 2 10 18 1
120 OpenSSH 7.2 7.2p2 March 10, 2016 2 12 20 1
121 OpenSSH 7.1 7.1p2 Jan. 14, 2016 3 13 22 1
122 OpenSSH 7.0 7.0 3 13 22 1
123 OpenSSH 6.9 6.9 3 15 23 2
124 OpenSSH 6.8 6.8 3 15 24 2
125 OpenSSH 6.7 6.7 3 13 22 2
126 OpenSSH 6.6 6.6 3 13 23 2
127 OpenSSH 6.5 6.5 3 13 24 2
128 OpenSSH 6.4 6.4 3 14 24 2
129 OpenSSH 6.3 6.3 3 14 25 2
130 OpenSSH 6.2 6.2p2 May 16, 2013 3 14 25 2
131 OpenSSH 6.1 6.1 3 13 25 2
132 OpenSSH 6.0 6.0 3 13 25 2
133 OpenSSH 5.9 5.9 3 13 25 2
134 OpenSSH 5.8p2 5.8p2 3 12 24 2
135 OpenSSH 5.8 5.8p2 May 3, 2011 3 13 25 4
136 OpenSSH 5.7 5.7 3 13 26 4
137 OpenSSH 5.6 5.6 3 14 25 5
138 OpenSSH 5.5 5.5 3 14 24 5
139 OpenSSH 5.4 5.4 3 14 24 5
140 OpenSSH 5.3 5.3 3 13 24 5
141 OpenSSH 5.2 5.2 3 13 24 5
142 OpenSSH 5.1 5.1 3 13 24 5
143 OpenSSH 5.0 5.0 3 13 24 6
144 OpenSSH 4.9 4.9 3 13 24 6
145 OpenSSH 4.8 4.8 3 13 26 6
146 OpenSSH 4.7p1 4.7p1 3 13 23 7
147 OpenSSH 4.7 4.7 3 13 25 7
148 OpenSSH 4.6 4.6 3 14 26 6
149 OpenSSH 4.5 4.5 3 16 27 7
150 OpenSSH 4.4p1 4.4p1 3 14 26 6
151 OpenSSH 4.4 4.4 3 17 26 6
152 OpenSSH 4.3p2 4.3p2 3 14 27 6
153 OpenSSH 4.3p1 4.3p1 3 15 26 6
154 OpenSSH 4.3 4.3p2 Feb. 11, 2006 3 18 29 6
155 OpenSSH 4.2p1 4.2p1 3 15 27 6
156 OpenSSH 4.2 4.2 3 18 27 6
157 OpenSSH 4.1p1 4.1p1 3 15 28 6
158 OpenSSH 4.1 4.1 3 18 28 7
159 OpenSSH 4.0p1 4.0p1 3 15 28 6
160 OpenSSH 4.0 4.0 3 18 30 6
161 OpenSSH 3.9 3.9.1p1 3 18 29 7
162 OpenSSH 3.8 3.8.1p1 3 18 30 7
163 OpenSSH 3.7 3.7.1p2 3 23 30 7
164 OpenSSH 3.6 3.6.1p2 3 23 31 7
165 OpenSSH 3.5p1 3.5p1 3 19 29 7
166 OpenSSH 3.5 3.5 3 22 31 7
167 OpenSSH 3.4p1 3.4p1 3 19 29 7
168 OpenSSH 3.4 3.4 3 22 31 7
169 OpenSSH 3.3p1 3.3p1 3 20 29 7
170 OpenSSH 3.3 3.3 4 23 31 7
171 OpenSSH 3.2 3.2.3p1 4 25 31 7
172 OpenSSH 3.1p1 3.1p1 3 20 29 7
173 OpenSSH 3.1 3.1 4 24 31 7
174 OpenSSH 3.0p1 3.0p1 3 21 29 7
175 OpenSSH 3.0 3.0.2p1 5 26 32 7
176 OpenSSH 2.9p2 2.9p2 5 25 28 6
177 OpenSSH 2.9p1 2.9p1 5 25 28 6
178 OpenSSH 2.9 2.9p2 June 17, 2001 4 29 29 6
179 OpenSSH 2.5 2.5.2p2 March 22, 2001 4 29 29 6
180 OpenSSH 2.3 2.3.0p1 Nov. 6, 2000 4 29 30 6
181 OpenSSH 2.2 2.2.0p1 Sept. 1, 2000 4 31 29 6
182 OpenSSH 2.1 2.1.1p4 July 16, 2000 4 31 30 6
183 OpenSSH 2 OpenSSH 2.9.9 Sept. 25, 2001 5 32 31 6
184 OpenSSH 1.5 1.5.8 3 25 27 6
185 OpenSSH 1.3 1.3 3 25 27 6
186 OpenSSH 1.2 1.2.3p1 March 24, 2000 3 29 33 7
187 OpenSSH 1 OpenSSH 1.2.3p1 March 24, 2000 3 29 33 7
188 OpenSSH - - 3 24 31 7
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
101 -
7.5
HIGH sshd in OpenSSH 3.2.2, when using YP with netgroups and under certain conditions, may allow users to successfully authenticate and log in with another user's password. NVD-CWE-Other
CVE-2002-0765 cpe:2.3:a:openbsd:openssh:3.2.2:* 2008-09-11 04:12
2002-08-12
Show GitHub Exploit DB Packet Storm
102 9.8
10.0
CRITICAL
Network
Integer overflow in sshd in OpenSSH 2.9.9 through 3.3 allows remote attackers to execute arbitrary code during challenge response authentication (ChallengeResponseAuthentication) when OpenSSH is usin… CWE-190
 Integer Overflow or Wraparound
CVE-2002-0639 cpe:2.3:a:openbsd:openssh:*:* 2.9.9 3.3 2024-02-9 03:37
2002-07-3
Show GitHub Exploit DB Packet Storm
103 -
10.0
HIGH Buffer overflow in sshd in OpenSSH 2.3.1 through 3.3 may allow remote attackers to execute arbitrary code via a large number of responses during challenge response authentication when OpenBSD is usin… NVD-CWE-Other
CVE-2002-0640 cpe:2.3:a:openbsd:openssh:3.3p1:*
cpe:2.3:a:openbsd:openssh:3.3:*
cpe:2.3:a:openbsd:openssh:3.2:*
cpe:2.3:a:op…
2024-07-1 20:15
2002-07-3
Show GitHub Exploit DB Packet Storm
104 -
7.5
HIGH Buffer overflow in OpenSSH before 2.9.9, and 3.x before 3.2.1, with Kerberos/AFS support and KerberosTgtPassing or AFSTokenPassing enabled, allows remote and local authenticated users to gain privile… NVD-CWE-Other
CVE-2002-0575 cpe:2.3:a:openbsd:openssh:3.2:*
cpe:2.3:a:openbsd:openssh:3.1:*
cpe:2.3:a:openbsd:openssh:3.0:*
cpe:2.3:a:open…
2016-10-18 11:20
2002-06-18
Show GitHub Exploit DB Packet Storm
105 9.8
10.0
CRITICAL
Network
Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges. CWE-193
 Off-by-one Error
CVE-2002-0083 cpe:2.3:a:openbsd:openssh:*:* 2.0 3.1 2024-02-2 11:52
2002-03-15
Show GitHub Exploit DB Packet Storm
106 -
7.5
HIGH OpenSSH before 3.0.1 with Kerberos V enabled does not properly authenticate users, which could allow remote attackers to login unchallenged. NVD-CWE-Other
CVE-2001-1507 cpe:2.3:a:openbsd:openssh:3.0p1:*
cpe:2.3:a:openbsd:openssh:3.0:*
2008-09-11 04:10
2001-12-31
Show GitHub Exploit DB Packet Storm
107 -
6.8
MEDIUM SSH protocol 2 (aka SSH-2) public key authentication in the development snapshot of OpenSSH 2.3.1, available from 2001-01-18 through 2001-02-08, does not perform a challenge-response step to ensure t… CWE-287
Improper Authentication
CVE-2001-1585 cpe:2.3:a:openbsd:openssh:2.3.1:* 2017-07-29 10:29
2001-12-31
Show GitHub Exploit DB Packet Storm
108 -
7.2
HIGH OpenSSH 3.0.1 and earlier with UseLogin enabled does not properly cleanse critical environment variables such as LD_PRELOAD, which allows local users to gain root privileges. NVD-CWE-Other
CVE-2001-0872 cpe:2.3:a:openbsd:openssh:*:* 3.0.1 2018-05-3 10:29
2001-12-21
Show GitHub Exploit DB Packet Storm
109 -
7.5
HIGH OpenSSH before 2.9.9, when running sftp using sftp-server and using restricted keypairs, allows remote authenticated users to bypass authorized_keys2 command= restrictions using sftp commands. NVD-CWE-Other
CVE-2001-0816 cpe:2.3:a:openbsd:openssh:*:* 2.9.9 2017-10-10 10:29
2001-12-6
Show GitHub Exploit DB Packet Storm
110 -
7.5
HIGH OpenSSH before 2.9.9, while using keypairs and multiple keys of different types in the ~/.ssh/authorized_keys2 file, may not properly handle the "from" option associated with a key, which could allow… NVD-CWE-Other
CVE-2001-1380 cpe:2.3:a:openbsd:openssh:*:* 2.9.9 2018-05-3 10:29
2001-10-18
Show GitHub Exploit DB Packet Storm