Software Detail
Title
CVE
CRITICAL
HIGH
MEDIUM
LOW
CWE
Number of items displayed
Openssh Number Of NVD 124 CRITICAL 6 HIGH 46 MEDIUM 60 LOW 12
URL https://www.openssh.com/
Explanation It is an SSH implementation developed by the OpenBSD project and used on many Unix and Linux systems.
It can also be used on Windows, as the OpenSSH client can be easily installed.
Tag
  • BSD License
  • オープンソース

Add Information URL
No Type Name URL
1 https://anongit.mindrot.org/openssh

List Of Product  [ Click to show release history and vulnerability information ]
No Name Latest Version Release date Initial release Normal Support Security Support
Service Pack Support
Extended
for a fee
Critical High Medium Low
71 OpenSSH 9 9.9p2 Feb. 18, 2025 April 8, 2022 3 4 10 0
72 OpenSSH 8 8.9 Feb. 23, 2022 April 17, 2019 3 9 11 1
73 OpenSSH 7 OpenSSH 7.9 Oct. 19, 2018 Aug. 11, 2015 3 14 22 1
74 OpenSSH 6 OpenSSH 6.9 July 1, 2015 April 22, 2012 3 16 28 2
75 OpenSSH 5 OpenSSH 5.9 Sept. 6, 2011 April 3, 2008 3 14 27 6
76 OpenSSH 4 OpenSSH 4.9 March 31, 2008 March 9, 2005 3 20 35 9
77 OpenSSH 3 OpenSSH 3.9 Aug. 18, 2004 Nov. 6, 2001 5 30 35 7
78 OpenSSH 8.4 8.4 2 5 10 1
79 OpenSSH 8.3 8.3 2 6 10 1
80 OpenSSH 8.2 8.2 2 7 10 1
81 OpenSSH 8.1 8.1 2 5 10 1
82 OpenSSH 8.0 8.0 2 6 10 1
83 OpenSSH 7.9 7.9 2 6 14 1
84 OpenSSH 7.8 7.8 2 6 15 1
85 OpenSSH 7.7 7.7 2 6 16 1
86 OpenSSH 7.6 7.6 2 5 16 1
87 OpenSSH 7.5 7.5 2 5 17 1
88 OpenSSH 7.4 7.4 2 5 17 1
89 OpenSSH 7.3 7.3 2 10 18 1
90 OpenSSH 7.2 7.2p2 March 10, 2016 2 12 20 1
91 OpenSSH 7.1 7.1p2 Jan. 14, 2016 3 13 22 1
92 OpenSSH 7.0 7.0 3 13 22 1
93 OpenSSH 6.9 6.9 3 15 23 2
94 OpenSSH 6.8 6.8 3 15 24 2
95 OpenSSH 6.7 6.7 3 13 22 2
96 OpenSSH 6.6 6.6 3 13 23 2
97 OpenSSH 6.5 6.5 3 13 24 2
98 OpenSSH 6.4 6.4 3 14 24 2
99 OpenSSH 6.3 6.3 3 14 25 2
100 OpenSSH 6.2 6.2p2 May 16, 2013 3 14 25 2
101 OpenSSH 6.1 6.1 3 13 25 2
102 OpenSSH 6.0 6.0 3 13 25 2
103 OpenSSH 5.9 5.9 3 13 25 2
104 OpenSSH 5.8p2 5.8p2 3 12 24 2
105 OpenSSH 5.8 5.8p2 May 3, 2011 3 13 25 4
106 OpenSSH 5.7 5.7 3 13 26 4
107 OpenSSH 5.6 5.6 3 14 25 5
108 OpenSSH 5.5 5.5 3 14 24 5
109 OpenSSH 5.4 5.4 3 14 24 5
110 OpenSSH 5.3 5.3 3 13 24 5
111 OpenSSH 5.2 5.2 3 13 24 5
112 OpenSSH 5.1 5.1 3 13 24 5
113 OpenSSH 5.0 5.0 3 13 24 6
114 OpenSSH 4.9 4.9 3 13 24 6
115 OpenSSH 4.8 4.8 3 13 26 6
116 OpenSSH 4.7p1 4.7p1 3 13 23 7
117 OpenSSH 4.7 4.7 3 13 25 7
118 OpenSSH 4.6 4.6 3 14 26 6
119 OpenSSH 4.5 4.5 3 16 27 7
120 OpenSSH 4.4p1 4.4p1 3 14 26 6
121 OpenSSH 4.4 4.4 3 17 26 6
122 OpenSSH 4.3p2 4.3p2 3 14 27 6
123 OpenSSH 4.3p1 4.3p1 3 15 26 6
124 OpenSSH 4.3 4.3p2 Feb. 11, 2006 3 18 29 6
125 OpenSSH 4.2p1 4.2p1 3 15 27 6
126 OpenSSH 4.2 4.2 3 18 27 6
127 OpenSSH 4.1p1 4.1p1 3 15 28 6
128 OpenSSH 4.1 4.1 3 18 28 7
129 OpenSSH 4.0p1 4.0p1 3 15 28 6
130 OpenSSH 4.0 4.0 3 18 30 6
131 OpenSSH 3.9 3.9.1p1 3 18 29 7
132 OpenSSH 3.8 3.8.1p1 3 18 30 7
133 OpenSSH 3.7 3.7.1p2 3 23 30 7
134 OpenSSH 3.6 3.6.1p2 3 23 31 7
135 OpenSSH 3.5p1 3.5p1 3 19 29 7
136 OpenSSH 3.5 3.5 3 22 31 7
137 OpenSSH 3.4p1 3.4p1 3 19 29 7
138 OpenSSH 3.4 3.4 3 22 31 7
139 OpenSSH 3.3p1 3.3p1 3 20 29 7
140 OpenSSH 3.3 3.3 4 23 31 7
141 OpenSSH 3.2 3.2.3p1 4 25 31 7
142 OpenSSH 3.1p1 3.1p1 3 20 29 7
143 OpenSSH 3.1 3.1 4 24 31 7
144 OpenSSH 3.0p1 3.0p1 3 21 29 7
145 OpenSSH 3.0 3.0.2p1 5 26 32 7
146 OpenSSH 2.9p2 2.9p2 5 25 28 6
147 OpenSSH 2.9p1 2.9p1 5 25 28 6
148 OpenSSH 2.9 2.9p2 June 17, 2001 4 29 29 6
149 OpenSSH 2.5 2.5.2p2 March 22, 2001 4 29 29 6
150 OpenSSH 2.3 2.3.0p1 Nov. 6, 2000 4 29 30 6
151 OpenSSH 2.2 2.2.0p1 Sept. 1, 2000 4 31 29 6
152 OpenSSH 2.1 2.1.1p4 July 16, 2000 4 31 30 6
153 OpenSSH 2 OpenSSH 2.9.9 Sept. 25, 2001 5 32 31 6
154 OpenSSH 1.5 1.5.8 3 25 27 6
155 OpenSSH 1.3 1.3 3 25 27 6
156 OpenSSH 1.2 1.2.3p1 March 24, 2000 3 29 33 7
157 OpenSSH 1 OpenSSH 1.2.3p1 March 24, 2000 3 29 33 7
158 OpenSSH - - 3 24 31 7
NVD Vulnerability Information
  • CRITICAL
  • HIGH
  • MEDIUM
  • LOW
No CVSS3
CVSS2
Level
Attach Vector
Title CWE CVE cpe23Uri or higher or less more than less than Update date
Published date
Show Affected Exploit
PoC
Search
71 -
6.5
MEDIUM sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapshot, allows remote authenticated users to obtain access to arbitrary SELinux roles by appending a :/ (colon slash) sequence, follo… CWE-264
Permissions, Privileges, and Access Controls
CVE-2008-3234 cpe:2.3:a:openbsd:openssh:4.0:* 2026-04-23 09:35
2008-07-19
Show GitHub Exploit DB Packet Storm
72 -
6.5
MEDIUM OpenSSH 4.4 up to versions before 4.9 allows remote authenticated users to bypass the sshd_config ForceCommand directive by modifying the .ssh/rc session file. CWE-264
Permissions, Privileges, and Access Controls
CVE-2008-1657 cpe:2.3:a:openbsd:openssh:4.8:*
cpe:2.3:a:openbsd:openssh:4.7:*
cpe:2.3:a:openbsd:openssh:4.6:*
cpe:2.3:a:open…
2026-04-23 09:35
2008-04-3
Show GitHub Exploit DB Packet Storm
73 -
6.9
MEDIUM OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even when another process is listening on the associated port, a… CWE-264
Permissions, Privileges, and Access Controls
CVE-2008-1483 cpe:2.3:a:openbsd:openssh:4.3p2:* 2026-04-23 09:35
2008-03-25
Show GitHub Exploit DB Packet Storm
74 -
4.3
MEDIUM Unspecified vulnerability in the linux_audit_record_event function in OpenSSH 4.3p2, as used on Fedora Core 6 and possibly other systems, allows remote attackers to write arbitrary characters to an a… NVD-CWE-noinfo
CVE-2007-3102 cpe:2.3:a:openbsd:openssh:4.3p2:* 2026-04-23 09:35
2007-10-19
Show GitHub Exploit DB Packet Storm
75 -
7.5
HIGH ssh in OpenSSH before 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which allows attackers to violate intended policy and gain privile… CWE-20
 Improper Input Validation 
CVE-2007-4752 cpe:2.3:a:openbsd:openssh:4.5:*
cpe:2.3:a:openbsd:openssh:4.4p1:*
cpe:2.3:a:openbsd:openssh:4.4:*
cpe:2.3:a:op…
4.6 2026-04-23 09:35
2007-09-12
Show GitHub Exploit DB Packet Storm
76 -
5.0
MEDIUM Unspecified vulnerability in SSHield 1.6.1 with OpenSSH 3.0.2p1 on Cisco WebNS 8.20.0.1 on Cisco Content Services Switch (CSS) series 11000 devices allows remote attackers to cause a denial of servic… CWE-399
 Resource Management Errors
CVE-2007-4654 cpe:2.3:a:openbsd:openssh:3.0.2p1:* 2026-04-23 09:35
2007-09-5
Show GitHub Exploit DB Packet Storm
77 -
5.0
MEDIUM OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabled, allows remote attackers to determine the existence of user accounts by attempting to authenticate via S/KEY, which displays a… CWE-287
Improper Authentication
CVE-2007-2243 cpe:2.3:a:openbsd:openssh:4.6:*
cpe:2.3:a:openbsd:openssh:4.5:*
cpe:2.3:a:openbsd:openssh:4.4p1:*
cpe:2.3:a:op…
2026-04-23 09:35
2007-04-26
Show GitHub Exploit DB Packet Storm
78 -
7.5
HIGH Unspecified vulnerability in the sshd Privilege Separation Monitor in OpenSSH before 4.5 causes weaker verification that authentication has been successful, which might allow attackers to bypass auth… NVD-CWE-Other
CVE-2006-5794 cpe:2.3:a:openbsd:openssh:*:* 4.4 2026-04-23 09:35
2006-11-9
Show GitHub Exploit DB Packet Storm
79 -
2.6
LOW OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under limited configurations, allows remote attackers to determine valid usernames via timing discrepancies… CWE-200
Information Exposure
CVE-2006-5229 cpe:2.3:a:openbsd:openssh:4.1:* 2026-04-23 09:35
2006-10-11
Show GitHub Exploit DB Packet Storm
80 -
5.0
MEDIUM packet.c in ssh in OpenSSH allows remote attackers to cause a denial of service (crash) by sending an invalid protocol sequence with USERAUTH_SUCCESS before NEWKEYS, which causes newkeys[mode] to be … NVD-CWE-Other
CVE-2006-4925 cpe:2.3:a:openbsd:openssh:4.5:* 2026-04-23 09:35
2006-09-29
Show GitHub Exploit DB Packet Storm