Software Detail

Software Informaton Top

Encryption

Software Detail

Openssh

Number Of NVD

113

CRITICAL

HIGH

MEDIUM

LOW

URL	https://www.openssh.com/
Explanation	It is an SSH implementation developed by the OpenBSD project and used on many Unix and Linux systems. It can also be used on Windows, as the OpenSSH client can be easily installed.
Tag	BSD License オープンソース

Add Information URL

No	Type	Name	URL
1			https://anongit.mindrot.org/openssh

List Of Product [ Click to show release history and vulnerability information ]

No	Name	Latest Version	Release date	Initial release	Critical	High	Medium	Low
81	OpenSSH 9	9.9p2	Feb. 18, 2025	April 8, 2022	2	2	5	0
82	OpenSSH 8	8.9	Feb. 23, 2022	April 17, 2019	2	7	6	1
83	OpenSSH 7	OpenSSH 7.9	Oct. 19, 2018	Aug. 11, 2015	2	12	17	1
84	OpenSSH 6	OpenSSH 6.9	July 1, 2015	April 22, 2012	2	14	23	2
85	OpenSSH 5	OpenSSH 5.9	Sept. 6, 2011	April 3, 2008	2	12	22	6
86	OpenSSH 4	OpenSSH 4.9	March 31, 2008	March 9, 2005	2	18	30	9
87	OpenSSH 3	OpenSSH 3.9	Aug. 18, 2004	Nov. 6, 2001	4	28	30	7
88	OpenSSH 8.4	8.4			1	3	5	1
89	OpenSSH 8.3	8.3			1	4	5	1
90	OpenSSH 8.2	8.2			1	5	5	1
91	OpenSSH 8.1	8.1			1	3	5	1
92	OpenSSH 8.0	8.0			1	4	5	1
93	OpenSSH 7.9	7.9			1	4	9	1
94	OpenSSH 7.8	7.8			1	4	10	1
95	OpenSSH 7.7	7.7			1	4	11	1
96	OpenSSH 7.6	7.6			1	3	11	1
97	OpenSSH 7.5	7.5			1	3	12	1
98	OpenSSH 7.4	7.4			1	3	12	1
99	OpenSSH 7.3	7.3			1	8	13	1
100	OpenSSH 7.2	7.2p2	March 10, 2016		1	10	15	1
101	OpenSSH 7.1	7.1p2	Jan. 14, 2016		2	11	17	1
102	OpenSSH 7.0	7.0			2	11	17	1
103	OpenSSH 6.9	6.9			2	13	18	2
104	OpenSSH 6.8	6.8			2	13	19	2
105	OpenSSH 6.7	6.7			2	11	17	2
106	OpenSSH 6.6	6.6			2	11	18	2
107	OpenSSH 6.5	6.5			2	11	19	2
108	OpenSSH 6.4	6.4			2	12	19	2
109	OpenSSH 6.3	6.3			2	12	20	2
110	OpenSSH 6.2	6.2p2	May 16, 2013		2	12	20	2
111	OpenSSH 6.1	6.1			2	11	20	2
112	OpenSSH 6.0	6.0			2	11	20	2
113	OpenSSH 5.9	5.9			2	11	20	2
114	OpenSSH 5.8p2	5.8p2			2	10	19	2
115	OpenSSH 5.8	5.8p2	May 3, 2011		2	11	20	4
116	OpenSSH 5.7	5.7			2	11	21	4
117	OpenSSH 5.6	5.6			2	12	20	5
118	OpenSSH 5.5	5.5			2	12	19	5
119	OpenSSH 5.4	5.4			2	12	19	5
120	OpenSSH 5.3	5.3			2	11	19	5
121	OpenSSH 5.2	5.2			2	11	19	5
122	OpenSSH 5.1	5.1			2	11	19	5
123	OpenSSH 5.0	5.0			2	11	19	6
124	OpenSSH 4.9	4.9			2	11	19	6
125	OpenSSH 4.8	4.8			2	11	21	6
126	OpenSSH 4.7p1	4.7p1			2	11	18	7
127	OpenSSH 4.7	4.7			2	11	20	7
128	OpenSSH 4.6	4.6			2	12	21	6
129	OpenSSH 4.5	4.5			2	14	22	7
130	OpenSSH 4.4p1	4.4p1			2	12	21	6
131	OpenSSH 4.4	4.4			2	15	21	6
132	OpenSSH 4.3p2	4.3p2			2	12	22	6
133	OpenSSH 4.3p1	4.3p1			2	13	21	6
134	OpenSSH 4.3	4.3p2	Feb. 11, 2006		2	16	24	6
135	OpenSSH 4.2p1	4.2p1			2	13	22	6
136	OpenSSH 4.2	4.2			2	16	22	6
137	OpenSSH 4.1p1	4.1p1			2	13	23	6
138	OpenSSH 4.1	4.1			2	16	23	7
139	OpenSSH 4.0p1	4.0p1			2	13	23	6
140	OpenSSH 4.0	4.0			2	16	25	6
141	OpenSSH 3.9	3.9.1p1			2	16	24	7
142	OpenSSH 3.8	3.8.1p1			2	16	25	7
143	OpenSSH 3.7	3.7.1p2			2	21	25	7
144	OpenSSH 3.6	3.6.1p2			2	21	26	7
145	OpenSSH 3.5p1	3.5p1			2	17	24	7
146	OpenSSH 3.5	3.5			2	20	26	7
147	OpenSSH 3.4p1	3.4p1			2	17	24	7
148	OpenSSH 3.4	3.4			2	20	26	7
149	OpenSSH 3.3p1	3.3p1			2	18	24	7
150	OpenSSH 3.3	3.3			3	21	26	7
151	OpenSSH 3.2	3.2.3p1			3	23	26	7
152	OpenSSH 3.1p1	3.1p1			2	18	24	7
153	OpenSSH 3.1	3.1			3	22	26	7
154	OpenSSH 3.0p1	3.0p1			2	19	24	7
155	OpenSSH 3.0	3.0.2p1			4	24	27	7
156	OpenSSH 2.9p2	2.9p2			4	23	23	6
157	OpenSSH 2.9p1	2.9p1			4	23	23	6
158	OpenSSH 2.9	2.9p2	June 17, 2001		3	27	24	6
159	OpenSSH 2.5	2.5.2p2	March 22, 2001		3	27	24	6
160	OpenSSH 2.3	2.3.0p1	Nov. 6, 2000		3	27	25	6
161	OpenSSH 2.2	2.2.0p1	Sept. 1, 2000		3	29	24	6
162	OpenSSH 2.1	2.1.1p4	July 16, 2000		3	29	25	6
163	OpenSSH 2	OpenSSH 2.9.9	Sept. 25, 2001		4	30	26	6
164	OpenSSH 1.5	1.5.8			2	23	22	6
165	OpenSSH 1.3	1.3			2	23	22	6
166	OpenSSH 1.2	1.2.3p1	March 24, 2000		2	27	28	7
167	OpenSSH 1	OpenSSH 1.2.3p1	March 24, 2000		2	27	28	7
168	OpenSSH -	-			2	22	24	6

NVD Vulnerability Information

CRITICAL
HIGH
MEDIUM
LOW

No	CVSS3 CVSS2	Level Attach Vector	Title	CWE	CVE	cpe23Uri	or less	less than	Update date Published date	Show Affected	Exploit PoC Search
81	- 4.3	MEDIUM	Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this may be a rediscovery of CVE-2000-0992.	CWE-22 Path Traversal	CVE-2004-0175	cpe:2.3:a:openbsd:openssh:3.4p1:* cpe:2.3:a:openbsd:openssh:3.4:* cpe:2.3:a:openbsd:openssh:3.3p1:* cpe:2.3:a:…			2017-10-11 10:29 2004-08-18	Show	GitHub Exploit DB Packet Storm

82	- 7.6	HIGH	sshd in OpenSSH 3.6.1p2 and earlier, when PermitRootLogin is disabled and using PAM keyboard-interactive authentication, does not insert a delay after a root login attempt with the correct password, …	CWE-362 Race Condition	CVE-2003-1562	cpe:2.3:a:openbsd:openssh:3.6:* cpe:2.3:a:openbsd:openssh:3.6.1p2:* cpe:2.3:a:openbsd:openssh:3.6.1p1:* cpe:2.…			2022-12-13 21:15 2003-12-31	Show	GitHub Exploit DB Packet Storm

83	- 10.0	HIGH	The SSH1 PAM challenge response authentication in OpenSSH 3.7.1 and 3.7.1p1, when Privilege Separation is disabled, does not check the result of the authentication attempt, which can allow remote att…	NVD-CWE-Other	CVE-2003-0786	cpe:2.3:a:openbsd:openssh:3.7.1p1:* cpe:2.3:a:openbsd:openssh:3.7.1:*			2008-09-11 04:20 2003-11-17	Show	GitHub Exploit DB Packet Storm

84	- 7.5	HIGH	The PAM conversation function in OpenSSH 3.7.1 and 3.7.1p1 interprets an array of structures as an array of pointers, which allows attackers to modify the stack and possibly gain privileges.	NVD-CWE-Other	CVE-2003-0787	cpe:2.3:a:openbsd:openssh:3.7.1p1:* cpe:2.3:a:openbsd:openssh:3.7.1:*			2008-09-11 04:20 2003-11-17	Show	GitHub Exploit DB Packet Storm

85	- 7.5	HIGH	"Memory bugs" in OpenSSH 3.7.1 and earlier, with unknown impact, a different set of vulnerabilities than CVE-2003-0693 and CVE-2003-0695.	NVD-CWE-Other	CVE-2003-0682	cpe:2.3:a:openbsd:openssh::	3.7.1		2018-05-3 10:29 2003-10-6	Show	GitHub Exploit DB Packet Storm

86	- 7.5	HIGH	Multiple "buffer management errors" in OpenSSH before 3.7.1 may allow attackers to cause a denial of service or execute arbitrary code using (1) buffer_init in buffer.c, (2) buffer_free in buffer.c, …	NVD-CWE-Other	CVE-2003-0695	cpe:2.3:a:openbsd:openssh::	3.7.1		2018-05-3 10:29 2003-10-6	Show	GitHub Exploit DB Packet Storm

87	- 10.0	HIGH	A "buffer management error" in buffer_append_space of buffer.c for OpenSSH before 3.7 may allow remote attackers to execute arbitrary code by causing an incorrect amount of memory to be freed and cor…	NVD-CWE-Other	CVE-2003-0693	cpe:2.3:a:openbsd:openssh::	3.7		2024-07-1 20:15 2003-09-22	Show	GitHub Exploit DB Packet Storm

88	- 7.5	HIGH	OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote attackers to bypass "from=" and "user@host" address restrictions …	NVD-CWE-Other	CVE-2003-0386	cpe:2.3:a:openbsd:openssh:3.6.1:*			2017-10-11 10:29 2003-07-2	Show	GitHub Exploit DB Packet Storm

89	- 5.0	MEDIUM	OpenSSH-portable (OpenSSH) 3.6.1p1 and earlier with PAM support enabled immediately sends an error message when a user does not exist, which allows remote attackers to determine valid usernames via a…	CWE-203 Information Exposure Through Discrepancy	CVE-2003-0190	cpe:2.3:a:openbsd:openssh:3.6.1:p1 cpe:2.3:a:openbsd:openssh::		3.6.1	2024-02-16 03:46 2003-05-12	Show	GitHub Exploit DB Packet Storm

90	- 7.5	HIGH	sshd in OpenSSH 3.2.2, when using YP with netgroups and under certain conditions, may allow users to successfully authenticate and log in with another user's password.	NVD-CWE-Other	CVE-2002-0765	cpe:2.3:a:openbsd:openssh:3.2.2:*			2008-09-11 04:12 2002-08-12	Show	GitHub Exploit DB Packet Storm