175.45.129.40
{
"scan_id": 1764212133,
"ip": "175.45.129.40",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "175.45.128.0/22",
"postal_code": "2261",
"coordinates": {
"latitude": "-33.3244",
"longitude": "151.4433"
},
"geo_point": "-33.3244, 151.4433",
"locale_code": "en",
"continent": "Oceania",
"country_code": "AU",
"country_name": "Australia",
"city": "Central Coast"
},
"location_updated_at": "2025-11-28T08:42:10Z",
"asn": {
"number": "AS38220",
"organization": "Amaze Intelligence",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "175.45.129.0/24",
"organization": "SIS Group Pty Ltd",
"descr": "SIS Group Pty Ltd,\nPO BOX 7292",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-09T11:27:43Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2025-11-28T08:42:10Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2025-11-28T09:10:34Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2025-11-28T08:42:10Z"
}
],
"hostnames": [
{
"name": "w1037.vm.amaze.net.au",
"last_updated_at": "2025-11-29T11:20:16.407481833Z"
}
],
"services": [
{
"port": 21,
"protocol": "tcp",
"name": "ftp",
"version": "",
"product": "Pure-FTPd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:pureftpd:pure-ftpd",
"part": "a",
"vendor": "pureftpd",
"product": "pure\\-ftpd",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"ftp": {
"banner": "220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\r\n220-You are user number 1 of 50 allowed.\r\n220-Local time is now 01:37. Server port: 21.\r\n220-This is a private system - No anonymous login\r\n220-IPv6 connections are also welcome on this server.\r\n220 You will be disconnected after 15 minutes of inactivity.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r13.i.lencr.org/"
]
},
"authority_key_id": "e7ab9f0f2c33a053d35e4f78c8b2840e3bd69233",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r13.c.lencr.org/105.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:\n F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7\n Timestamp : Oct 16 11:36:23.330 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:88:6D:99:A6:69:F8:50:BB:5F:D7:9C:\n 63:54:14:93:8A:87:9F:47:83:55:AB:1A:EA:E1:36:DE:\n E0:72:2D:62:1E:02:20:21:C5:74:DE:6D:C7:29:1C:09:\n 0E:40:3B:32:CE:15:F2:54:9D:EB:CA:0F:9B:12:B5:81:\n 86:99:1C:A7:80:56:D4\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 19:86:D4:C7:28:AA:6F:FE:BA:03:6F:78:2A:4D:01:91:\n AA:CE:2D:72:31:0F:AE:CE:5D:70:41:2D:25:4C:C7:D4\n Timestamp : Oct 16 11:36:23.332 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:B6:96:AD:E3:61:EB:CA:F1:46:A1:1F:\n E5:AE:DB:35:49:A0:CF:49:B0:3E:6C:CA:F7:1A:14:D8:\n A7:1E:98:B5:23:02:20:50:AB:1D:36:BD:6F:CE:6B:18:\n 5C:5A:33:02:81:2D:2D:41:01:CC:05:D4:A2:A6:DA:CF:\n 8B:7F:77:48:8D:D2:F2",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"w1037.vm.amaze.net.au"
]
},
"subject_key_id": "2a56ad2c45511cb1ab10e444f3059f86fb8e61b5"
},
"fingerprint_md5": "F667F17707DB71CF3315E34A95D92862",
"fingerprint_sha1": "29DBF99BE13B2B97732AB868694938648108636A",
"fingerprint_sha256": "67BFEF6D21DA3C2C576E6853B655FBC090A950CF9BCAC7C71084DCD856F5666F",
"issuer": {
"common_name": [
"R13"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R13",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-03T16:45:31",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "554649967056746707387543632344483330906472",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "cb38f715897c84a1445f5bc1ddfbc96ef29a59cd470a690585b0cb14c31458e7",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100886d99a669f850bb5fd79c635414938a879f478355ab1aeae136dee0722d621e022021c574de6dc7291c090e403b32ce15f2549debca0f9b12b58186991ca78056d4"
},
"timestamp": "2025-10-16T11:36:23.330000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "1986d4c728aa6ffeba036f782a4d0191aace2d72310faece5d70412d254cc7d4",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100b696ade361ebcaf146a11fe5aedb3549a0cf49b03e6ccaf71a14d8a71e98b523022050ab1d36bd6fce6b185c5a3302812d2d4101cc05d4a2a6dacf8b7f77488dd2f2"
},
"timestamp": "2025-10-16T11:36:23.332000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"w1037.vm.amaze.net.au"
]
},
"subject_alt_name": {
"dns_names": [
"w1037.vm.amaze.net.au"
],
"extended_dns_names": [
{
"domain": "amaze",
"fld": "amaze.net.au",
"subdomain": "w1037.vm",
"tld": "net.au"
}
]
},
"subject_dn": "/CN=w1037.vm.amaze.net.au",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "a8cdd1af507927e1ab390e94d4a3128842e056805f389a12e75a631c6635ba2a",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "64beb400747f2e875c3b085c84449d3d165b5109981b9bc5edb70e1acd69e560",
"tbs_noct_fingerprint": "d82ebc3ef0d6b79e2b1a05724e3f789dca213d08e7403af3514f0dabfa636cc4",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-01-14T10:37:52",
"not_before": "2025-10-16T10:37:53"
},
"version": 2
},
"fingerprint_sha256": "67BFEF6D21DA3C2C576E6853B655FBC090A950CF9BCAC7C71084DCD856F5666F",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-24T16:50:15.413Z"
},
{
"port": 22,
"protocol": "tcp",
"name": "ssh",
"version": "8.7",
"product": "OpenSSH",
"extra_info": "protocol 2.0",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:openbsd:openssh:8.7",
"part": "a",
"vendor": "openbsd",
"product": "openssh",
"version": "8\\.7",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"ssh": {
"banner": "SSH-2.0-OpenSSH_8.7",
"client_to_server_ciphers": [
"[email protected]",
"[email protected]",
"aes256-ctr",
"[email protected]",
"aes128-ctr"
],
"client_to_server_compression": [
"none",
"[email protected]"
],
"client_to_server_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha1",
"[email protected]",
"hmac-sha2-512"
],
"host_key_algorithms": [
"rsa-sha2-512",
"rsa-sha2-256",
"ssh-rsa",
"ecdsa-sha2-nistp256",
"ssh-ed25519"
],
"kex_algorithms": [
"curve25519-sha256",
"[email protected]",
"ecdh-sha2-nistp256",
"ecdh-sha2-nistp384",
"ecdh-sha2-nistp521",
"diffie-hellman-group-exchange-sha256",
"diffie-hellman-group14-sha256",
"diffie-hellman-group16-sha512",
"diffie-hellman-group18-sha512",
"diffie-hellman-group-exchange-sha1",
"diffie-hellman-group14-sha1",
"[email protected]"
],
"key": {
"algorithm": "ecdsa-sha2-nistp256",
"fingerprint_sha256": "98c9797dbae3fd79b327176d8951155eb14265262b41777ab710384cbf99f4f5",
"raw": "AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBD2WEeDv+h1uRYF+LxKdMKgJLZ7nutOUzOiIwV9csbJ2CTLaMKeTF4zXeC0MV13Hbr7WPBZ9//c/c0NYKJoXRW4="
},
"server_to_client_ciphers": [
"[email protected]",
"[email protected]",
"aes256-ctr",
"[email protected]",
"aes128-ctr"
],
"server_to_client_compression": [
"none",
"[email protected]"
],
"server_to_client_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha1",
"[email protected]",
"hmac-sha2-512"
],
"software": "OpenSSH_8.7",
"version": "2.0"
}
},
"cve": [
{
"id": "CVE-2007-2768",
"score": 4.3,
"severity": "medium"
},
{
"id": "CVE-2008-3844",
"score": 9.3,
"severity": "high"
},
{
"id": "CVE-2016-20012",
"score": 5.3,
"severity": "medium"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-25T04:14:58.98Z"
},
{
"port": 25,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"modules": {
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r13.i.lencr.org/"
]
},
"authority_key_id": "e7ab9f0f2c33a053d35e4f78c8b2840e3bd69233",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r13.c.lencr.org/105.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:\n F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7\n Timestamp : Oct 16 11:36:23.330 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:88:6D:99:A6:69:F8:50:BB:5F:D7:9C:\n 63:54:14:93:8A:87:9F:47:83:55:AB:1A:EA:E1:36:DE:\n E0:72:2D:62:1E:02:20:21:C5:74:DE:6D:C7:29:1C:09:\n 0E:40:3B:32:CE:15:F2:54:9D:EB:CA:0F:9B:12:B5:81:\n 86:99:1C:A7:80:56:D4\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 19:86:D4:C7:28:AA:6F:FE:BA:03:6F:78:2A:4D:01:91:\n AA:CE:2D:72:31:0F:AE:CE:5D:70:41:2D:25:4C:C7:D4\n Timestamp : Oct 16 11:36:23.332 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:B6:96:AD:E3:61:EB:CA:F1:46:A1:1F:\n E5:AE:DB:35:49:A0:CF:49:B0:3E:6C:CA:F7:1A:14:D8:\n A7:1E:98:B5:23:02:20:50:AB:1D:36:BD:6F:CE:6B:18:\n 5C:5A:33:02:81:2D:2D:41:01:CC:05:D4:A2:A6:DA:CF:\n 8B:7F:77:48:8D:D2:F2",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"w1037.vm.amaze.net.au"
]
},
"subject_key_id": "2a56ad2c45511cb1ab10e444f3059f86fb8e61b5"
},
"fingerprint_md5": "F667F17707DB71CF3315E34A95D92862",
"fingerprint_sha1": "29DBF99BE13B2B97732AB868694938648108636A",
"fingerprint_sha256": "67BFEF6D21DA3C2C576E6853B655FBC090A950CF9BCAC7C71084DCD856F5666F",
"issuer": {
"common_name": [
"R13"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R13",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-07T22:20:40",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "554649967056746707387543632344483330906472",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "cb38f715897c84a1445f5bc1ddfbc96ef29a59cd470a690585b0cb14c31458e7",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100886d99a669f850bb5fd79c635414938a879f478355ab1aeae136dee0722d621e022021c574de6dc7291c090e403b32ce15f2549debca0f9b12b58186991ca78056d4"
},
"timestamp": "2025-10-16T11:36:23.330000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "1986d4c728aa6ffeba036f782a4d0191aace2d72310faece5d70412d254cc7d4",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100b696ade361ebcaf146a11fe5aedb3549a0cf49b03e6ccaf71a14d8a71e98b523022050ab1d36bd6fce6b185c5a3302812d2d4101cc05d4a2a6dacf8b7f77488dd2f2"
},
"timestamp": "2025-10-16T11:36:23.332000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"w1037.vm.amaze.net.au"
]
},
"subject_alt_name": {
"dns_names": [
"w1037.vm.amaze.net.au"
],
"extended_dns_names": [
{
"domain": "amaze",
"fld": "amaze.net.au",
"subdomain": "w1037.vm",
"tld": "net.au"
}
]
},
"subject_dn": "/CN=w1037.vm.amaze.net.au",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "a8cdd1af507927e1ab390e94d4a3128842e056805f389a12e75a631c6635ba2a",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "64beb400747f2e875c3b085c84449d3d165b5109981b9bc5edb70e1acd69e560",
"tbs_noct_fingerprint": "d82ebc3ef0d6b79e2b1a05724e3f789dca213d08e7403af3514f0dabfa636cc4",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-01-14T10:37:52",
"not_before": "2025-10-16T10:37:53"
},
"version": 2
},
"fingerprint_sha256": "67BFEF6D21DA3C2C576E6853B655FBC090A950CF9BCAC7C71084DCD856F5666F",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-28T22:48:16.763Z"
},
{
"port": 80,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\">\n<html><head>\n<title>415 Unsupported Media Type</title>\n</head><body>\n<h1>Unsupported Media Type</h1>\n<p>The supplied request data is not in a format\nacceptable for processing by this resource.</p>\n<p>Additionally, a 415 Unsupported Media Type\nerror was encountered while trying to use an ErrorDocument to handle the request.</p>\n</body></html>\n",
"body_murmur": -1525252998,
"body_sha256": "da9ef1ece8165ce21987e57f092862d71e78bbab3d6a1af9693d4c2af7b5dcd4",
"component": [
"Apache HTTP Server"
],
"content_length": 395,
"headers": {
"content_length": [
"395"
],
"content_type": [
"text/html; charset=iso-8859-1"
],
"date": [
"Fri, 28 Nov 2025 01:59:47 GMT"
],
"server": [
"Apache"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "175.45.129.40",
"path": "",
"scheme": "http"
}
},
"status_code": 415,
"title": "415 Unsupported Media Type"
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "http://175.45.129.40/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-28T01:59:48.056Z"
},
{
"port": 110,
"protocol": "tcp",
"name": "pop3",
"version": "",
"product": "Dovecot pop3d",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"pop3": {
"banner": "+OK Dovecot ready.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r13.i.lencr.org/"
]
},
"authority_key_id": "e7ab9f0f2c33a053d35e4f78c8b2840e3bd69233",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r13.c.lencr.org/105.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:\n F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7\n Timestamp : Oct 16 11:36:23.330 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:88:6D:99:A6:69:F8:50:BB:5F:D7:9C:\n 63:54:14:93:8A:87:9F:47:83:55:AB:1A:EA:E1:36:DE:\n E0:72:2D:62:1E:02:20:21:C5:74:DE:6D:C7:29:1C:09:\n 0E:40:3B:32:CE:15:F2:54:9D:EB:CA:0F:9B:12:B5:81:\n 86:99:1C:A7:80:56:D4\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 19:86:D4:C7:28:AA:6F:FE:BA:03:6F:78:2A:4D:01:91:\n AA:CE:2D:72:31:0F:AE:CE:5D:70:41:2D:25:4C:C7:D4\n Timestamp : Oct 16 11:36:23.332 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:B6:96:AD:E3:61:EB:CA:F1:46:A1:1F:\n E5:AE:DB:35:49:A0:CF:49:B0:3E:6C:CA:F7:1A:14:D8:\n A7:1E:98:B5:23:02:20:50:AB:1D:36:BD:6F:CE:6B:18:\n 5C:5A:33:02:81:2D:2D:41:01:CC:05:D4:A2:A6:DA:CF:\n 8B:7F:77:48:8D:D2:F2",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"w1037.vm.amaze.net.au"
]
},
"subject_key_id": "2a56ad2c45511cb1ab10e444f3059f86fb8e61b5"
},
"fingerprint_md5": "F667F17707DB71CF3315E34A95D92862",
"fingerprint_sha1": "29DBF99BE13B2B97732AB868694938648108636A",
"fingerprint_sha256": "67BFEF6D21DA3C2C576E6853B655FBC090A950CF9BCAC7C71084DCD856F5666F",
"issuer": {
"common_name": [
"R13"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R13",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-11-22T14:49:46",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "554649967056746707387543632344483330906472",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "cb38f715897c84a1445f5bc1ddfbc96ef29a59cd470a690585b0cb14c31458e7",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100886d99a669f850bb5fd79c635414938a879f478355ab1aeae136dee0722d621e022021c574de6dc7291c090e403b32ce15f2549debca0f9b12b58186991ca78056d4"
},
"timestamp": "2025-10-16T11:36:23.330000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "1986d4c728aa6ffeba036f782a4d0191aace2d72310faece5d70412d254cc7d4",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100b696ade361ebcaf146a11fe5aedb3549a0cf49b03e6ccaf71a14d8a71e98b523022050ab1d36bd6fce6b185c5a3302812d2d4101cc05d4a2a6dacf8b7f77488dd2f2"
},
"timestamp": "2025-10-16T11:36:23.332000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"w1037.vm.amaze.net.au"
]
},
"subject_alt_name": {
"dns_names": [
"w1037.vm.amaze.net.au"
],
"extended_dns_names": [
{
"domain": "amaze",
"fld": "amaze.net.au",
"subdomain": "w1037.vm",
"tld": "net.au"
}
]
},
"subject_dn": "/CN=w1037.vm.amaze.net.au",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "a8cdd1af507927e1ab390e94d4a3128842e056805f389a12e75a631c6635ba2a",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "64beb400747f2e875c3b085c84449d3d165b5109981b9bc5edb70e1acd69e560",
"tbs_noct_fingerprint": "d82ebc3ef0d6b79e2b1a05724e3f789dca213d08e7403af3514f0dabfa636cc4",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-01-14T10:37:52",
"not_before": "2025-10-16T10:37:53"
},
"version": 2
},
"fingerprint_sha256": "67BFEF6D21DA3C2C576E6853B655FBC090A950CF9BCAC7C71084DCD856F5666F",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-29T06:35:59.475Z"
},
{
"port": 143,
"protocol": "tcp",
"name": "imap",
"version": "",
"product": "Dovecot imapd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"imap": {
"banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r13.i.lencr.org/"
]
},
"authority_key_id": "e7ab9f0f2c33a053d35e4f78c8b2840e3bd69233",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r13.c.lencr.org/105.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:\n F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7\n Timestamp : Oct 16 11:36:23.330 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:88:6D:99:A6:69:F8:50:BB:5F:D7:9C:\n 63:54:14:93:8A:87:9F:47:83:55:AB:1A:EA:E1:36:DE:\n E0:72:2D:62:1E:02:20:21:C5:74:DE:6D:C7:29:1C:09:\n 0E:40:3B:32:CE:15:F2:54:9D:EB:CA:0F:9B:12:B5:81:\n 86:99:1C:A7:80:56:D4\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 19:86:D4:C7:28:AA:6F:FE:BA:03:6F:78:2A:4D:01:91:\n AA:CE:2D:72:31:0F:AE:CE:5D:70:41:2D:25:4C:C7:D4\n Timestamp : Oct 16 11:36:23.332 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:B6:96:AD:E3:61:EB:CA:F1:46:A1:1F:\n E5:AE:DB:35:49:A0:CF:49:B0:3E:6C:CA:F7:1A:14:D8:\n A7:1E:98:B5:23:02:20:50:AB:1D:36:BD:6F:CE:6B:18:\n 5C:5A:33:02:81:2D:2D:41:01:CC:05:D4:A2:A6:DA:CF:\n 8B:7F:77:48:8D:D2:F2",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"w1037.vm.amaze.net.au"
]
},
"subject_key_id": "2a56ad2c45511cb1ab10e444f3059f86fb8e61b5"
},
"fingerprint_md5": "F667F17707DB71CF3315E34A95D92862",
"fingerprint_sha1": "29DBF99BE13B2B97732AB868694938648108636A",
"fingerprint_sha256": "67BFEF6D21DA3C2C576E6853B655FBC090A950CF9BCAC7C71084DCD856F5666F",
"issuer": {
"common_name": [
"R13"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R13",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-07T06:50:40",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "554649967056746707387543632344483330906472",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "cb38f715897c84a1445f5bc1ddfbc96ef29a59cd470a690585b0cb14c31458e7",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100886d99a669f850bb5fd79c635414938a879f478355ab1aeae136dee0722d621e022021c574de6dc7291c090e403b32ce15f2549debca0f9b12b58186991ca78056d4"
},
"timestamp": "2025-10-16T11:36:23.330000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "1986d4c728aa6ffeba036f782a4d0191aace2d72310faece5d70412d254cc7d4",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100b696ade361ebcaf146a11fe5aedb3549a0cf49b03e6ccaf71a14d8a71e98b523022050ab1d36bd6fce6b185c5a3302812d2d4101cc05d4a2a6dacf8b7f77488dd2f2"
},
"timestamp": "2025-10-16T11:36:23.332000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"w1037.vm.amaze.net.au"
]
},
"subject_alt_name": {
"dns_names": [
"w1037.vm.amaze.net.au"
],
"extended_dns_names": [
{
"domain": "amaze",
"fld": "amaze.net.au",
"subdomain": "w1037.vm",
"tld": "net.au"
}
]
},
"subject_dn": "/CN=w1037.vm.amaze.net.au",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "a8cdd1af507927e1ab390e94d4a3128842e056805f389a12e75a631c6635ba2a",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "64beb400747f2e875c3b085c84449d3d165b5109981b9bc5edb70e1acd69e560",
"tbs_noct_fingerprint": "d82ebc3ef0d6b79e2b1a05724e3f789dca213d08e7403af3514f0dabfa636cc4",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-01-14T10:37:52",
"not_before": "2025-10-16T10:37:53"
},
"version": 2
},
"fingerprint_sha256": "67BFEF6D21DA3C2C576E6853B655FBC090A950CF9BCAC7C71084DCD856F5666F",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-28T07:05:59.783Z"
},
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<!DOCTYPE HTML PUBLIC \"-//IETF//DTD HTML 2.0//EN\">\n<html><head>\n<title>415 Unsupported Media Type</title>\n</head><body>\n<h1>Unsupported Media Type</h1>\n<p>The supplied request data is not in a format\nacceptable for processing by this resource.</p>\n<p>Additionally, a 415 Unsupported Media Type\nerror was encountered while trying to use an ErrorDocument to handle the request.</p>\n</body></html>\n",
"body_murmur": -1525252998,
"body_sha256": "da9ef1ece8165ce21987e57f092862d71e78bbab3d6a1af9693d4c2af7b5dcd4",
"component": [
"Apache HTTP Server"
],
"content_length": 395,
"headers": {
"content_length": [
"395"
],
"content_type": [
"text/html; charset=iso-8859-1"
],
"date": [
"Thu, 27 Nov 2025 13:57:09 GMT"
],
"server": [
"Apache"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "175.45.129.40",
"path": "",
"scheme": "https"
}
},
"status_code": 415,
"title": "415 Unsupported Media Type"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://crt.comodoca.com/cPanelIncCertificationAuthority.crt"
],
"ocsp_urls": [
"http://ocsp.comodoca.com"
]
},
"authority_key_id": "7e035a65416ba77e0ae1b89d08ea1d8e1d6ac765",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"cps": [
"https://secure.comodo.com/CPS"
],
"id": "1.3.6.1.4.1.6449.1.2.2.52"
},
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://crl.comodoca.com/cPanelIncCertificationAuthority.crl"
],
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"chubbsafesplus.com.au",
"chubbsafesplus.com",
"mail.chubbsafesplus.com",
"mail.chubbsafesplus.com.au",
"www.chubbsafesplus.com",
"www.chubbsafesplus.com.au"
]
},
"subject_key_id": "f2fcbebabe146c94d78e6d483fabc1a2e7768668"
},
"fingerprint_md5": "B98E39C6811E0DC5CA625091311DA21A",
"fingerprint_sha1": "B20E1534A7F024FA5433194C7E81B42E733D2B30",
"fingerprint_sha256": "D694BB533F71AE0C2167CBD11560B62F078A15CF9340295DB59FB4FF36754844",
"issuer": {
"common_name": [
"cPanel, Inc. Certification Authority"
],
"country": [
"US"
],
"locality": [
"Houston"
],
"organization": [
"cPanel, Inc."
],
"province": [
"TX"
]
},
"issuer_dn": "/C=US/ST=TX/L=Houston/O=cPanel, Inc./CN=cPanel, Inc. Certification Authority",
"jarm": "29d29d15d29d29d00042d42d00000061256d32ed7779c14686ad100544dc8d",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-05T08:39:10",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "225962277123411427663761832202876616430",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"subject": {
"common_name": [
"chubbsafesplus.com.au"
]
},
"subject_alt_name": {
"dns_names": [
"chubbsafesplus.com.au",
"chubbsafesplus.com",
"mail.chubbsafesplus.com",
"mail.chubbsafesplus.com.au",
"www.chubbsafesplus.com",
"www.chubbsafesplus.com.au"
],
"extended_dns_names": [
{
"domain": "chubbsafesplus",
"fld": "chubbsafesplus.com.au",
"tld": "com.au"
},
{
"domain": "chubbsafesplus",
"fld": "chubbsafesplus.com",
"tld": "com"
},
{
"domain": "chubbsafesplus",
"fld": "chubbsafesplus.com",
"subdomain": "mail",
"tld": "com"
},
{
"domain": "chubbsafesplus",
"fld": "chubbsafesplus.com.au",
"subdomain": "mail",
"tld": "com.au"
},
{
"domain": "chubbsafesplus",
"fld": "chubbsafesplus.com",
"subdomain": "www",
"tld": "com"
},
{
"domain": "chubbsafesplus",
"fld": "chubbsafesplus.com.au",
"subdomain": "www",
"tld": "com.au"
}
]
},
"subject_dn": "/CN=chubbsafesplus.com.au",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "35e4e57eeb04b8df5a9bf146a2e9ed7d5ac1783b682aa79cb7c88ea76ef988ec",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "68d05ba426f637a7f99a538ddc9c2fe5595e52656ec492b8f51b03048b39e186",
"validation_level": "DV",
"validity": {
"length_seconds": 7862399,
"not_after": "2017-09-06T23:59:59",
"not_before": "2017-06-08T00:00:00"
},
"version": 2
},
"fingerprint_sha256": "D694BB533F71AE0C2167CBD11560B62F078A15CF9340295DB59FB4FF36754844",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "https://175.45.129.40/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-28T14:48:25.391Z"
},
{
"port": 465,
"protocol": "tcp",
"name": "smtp",
"version": "4.98.2",
"product": "Exim smtpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:exim:exim:4.98.2",
"part": "a",
"vendor": "exim",
"product": "exim",
"version": "4\\.98\\.2",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-29T02:02:43.351Z"
},
{
"port": 587,
"protocol": "tcp",
"name": "smtp",
"version": "4.98.2",
"product": "Exim smtpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:exim:exim:4.98.2",
"part": "a",
"vendor": "exim",
"product": "exim",
"version": "4\\.98\\.2",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smtp": {
"banner": "220-w1037.vm.amaze.net.au ESMTP Exim 4.98.2 #2 Tue, 25 Nov 2025 11:26:17 +1100 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r13.i.lencr.org/"
]
},
"authority_key_id": "e7ab9f0f2c33a053d35e4f78c8b2840e3bd69233",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r13.c.lencr.org/105.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : CB:38:F7:15:89:7C:84:A1:44:5F:5B:C1:DD:FB:C9:6E:\n F2:9A:59:CD:47:0A:69:05:85:B0:CB:14:C3:14:58:E7\n Timestamp : Oct 16 11:36:23.330 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:88:6D:99:A6:69:F8:50:BB:5F:D7:9C:\n 63:54:14:93:8A:87:9F:47:83:55:AB:1A:EA:E1:36:DE:\n E0:72:2D:62:1E:02:20:21:C5:74:DE:6D:C7:29:1C:09:\n 0E:40:3B:32:CE:15:F2:54:9D:EB:CA:0F:9B:12:B5:81:\n 86:99:1C:A7:80:56:D4\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 19:86:D4:C7:28:AA:6F:FE:BA:03:6F:78:2A:4D:01:91:\n AA:CE:2D:72:31:0F:AE:CE:5D:70:41:2D:25:4C:C7:D4\n Timestamp : Oct 16 11:36:23.332 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:B6:96:AD:E3:61:EB:CA:F1:46:A1:1F:\n E5:AE:DB:35:49:A0:CF:49:B0:3E:6C:CA:F7:1A:14:D8:\n A7:1E:98:B5:23:02:20:50:AB:1D:36:BD:6F:CE:6B:18:\n 5C:5A:33:02:81:2D:2D:41:01:CC:05:D4:A2:A6:DA:CF:\n 8B:7F:77:48:8D:D2:F2",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"w1037.vm.amaze.net.au"
]
},
"subject_key_id": "2a56ad2c45511cb1ab10e444f3059f86fb8e61b5"
},
"fingerprint_md5": "F667F17707DB71CF3315E34A95D92862",
"fingerprint_sha1": "29DBF99BE13B2B97732AB868694938648108636A",
"fingerprint_sha256": "67BFEF6D21DA3C2C576E6853B655FBC090A950CF9BCAC7C71084DCD856F5666F",
"issuer": {
"common_name": [
"R13"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R13",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-12-04T04:50:40",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "554649967056746707387543632344483330906472",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "cb38f715897c84a1445f5bc1ddfbc96ef29a59cd470a690585b0cb14c31458e7",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100886d99a669f850bb5fd79c635414938a879f478355ab1aeae136dee0722d621e022021c574de6dc7291c090e403b32ce15f2549debca0f9b12b58186991ca78056d4"
},
"timestamp": "2025-10-16T11:36:23.330000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "1986d4c728aa6ffeba036f782a4d0191aace2d72310faece5d70412d254cc7d4",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3045022100b696ade361ebcaf146a11fe5aedb3549a0cf49b03e6ccaf71a14d8a71e98b523022050ab1d36bd6fce6b185c5a3302812d2d4101cc05d4a2a6dacf8b7f77488dd2f2"
},
"timestamp": "2025-10-16T11:36:23.332000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"w1037.vm.amaze.net.au"
]
},
"subject_alt_name": {
"dns_names": [
"w1037.vm.amaze.net.au"
],
"extended_dns_names": [
{
"domain": "amaze",
"fld": "amaze.net.au",
"subdomain": "w1037.vm",
"tld": "net.au"
}
]
},
"subject_dn": "/CN=w1037.vm.amaze.net.au",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "a8cdd1af507927e1ab390e94d4a3128842e056805f389a12e75a631c6635ba2a",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "64beb400747f2e875c3b085c84449d3d165b5109981b9bc5edb70e1acd69e560",
"tbs_noct_fingerprint": "d82ebc3ef0d6b79e2b1a05724e3f789dca213d08e7403af3514f0dabfa636cc4",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2026-01-14T10:37:52",
"not_before": "2025-10-16T10:37:53"
},
"version": 2
},
"fingerprint_sha256": "67BFEF6D21DA3C2C576E6853B655FBC090A950CF9BCAC7C71084DCD856F5666F",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-25T05:01:29.758Z"
},
{
"port": 993,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-29T10:22:30.91Z"
},
{
"port": 995,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-27T11:45:17.768Z"
},
{
"port": 3306,
"protocol": "tcp",
"name": "mysql",
"version": "10.3.23 or earlier",
"product": "MariaDB",
"extra_info": "unauthorized",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:mariadb:mariadb",
"part": "a",
"vendor": "mariadb",
"product": "mariadb",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-11-27T07:53:05.109Z"
}
],
"services_hash": "6e17fc131be8e675be0d86b0a3f3ac69843e4dce14f80fa2192ac90d4a44fd37",
"last_updated_at": "2025-11-29T10:22:30.91Z",
"banner": [
"ftp",
"tls",
"ssh",
"http",
"pop3",
"imap",
"smtp"
],
"is_vuln": true,
"cveDetails": {
"CVE-1999-0070": {
"id": "CVE-1999-0070",
"references": [
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E"
],
"score": 5,
"services": [
"80/http"
],
"severity": "medium",
"summary": "test-cgi program allows an attacker to list files on the server.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-1999-1199": {
"id": "CVE-1999-1199",
"references": [
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E",
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
],
"score": 10,
"services": [
"80/http"
],
"severity": "high",
"summary": "Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the \"sioux\" vulnerability.",
"vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "NVD-CWE-Other"
},
"CVE-2007-2768": {
"id": "CVE-2007-2768",
"references": [
"http://archives.neohapsis.com/archives/fulldisclosure/2007-04/0635.html",
"http://www.osvdb.org/34601",
"https://security.netapp.com/advisory/ntap-20191107-0002/",
"http://archives.neohapsis.com/archives/fulldisclosure/2007-04/0635.html",
"http://www.osvdb.org/34601",
"https://security.netapp.com/advisory/ntap-20191107-0002/"
],
"score": 4.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.",
"vector_string": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"weakness": "CWE-200"
},
"CVE-2008-3844": {
"id": "CVE-2008-3844",
"references": [
"http://secunia.com/advisories/31575",
"http://secunia.com/advisories/32241",
"http://securitytracker.com/id?1020730",
"http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm",
"http://www.redhat.com/security/data/openssh-blacklist.html",
"http://www.redhat.com/support/errata/RHSA-2008-0855.html",
"http://www.securityfocus.com/bid/30794",
"http://www.vupen.com/english/advisories/2008/2821",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/44747",
"http://secunia.com/advisories/31575",
"http://secunia.com/advisories/32241",
"http://securitytracker.com/id?1020730",
"http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm",
"http://www.redhat.com/security/data/openssh-blacklist.html",
"http://www.redhat.com/support/errata/RHSA-2008-0855.html",
"http://www.securityfocus.com/bid/30794",
"http://www.vupen.com/english/advisories/2008/2821",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/44747"
],
"score": 9.3,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.",
"vector_string": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"weakness": "CWE-20"
},
"CVE-2016-20012": {
"id": "CVE-2016-20012",
"references": [
"https://github.com/openssh/openssh-portable/blob/d0fffc88c8fe90c1815c6f4097bc8cbcabc0f3dd/auth2-pubkey.c#L261-L265",
"https://github.com/openssh/openssh-portable/pull/270",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-920577097",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-943909185",
"https://rushter.com/blog/public-ssh-keys/",
"https://security.netapp.com/advisory/ntap-20211014-0005/",
"https://utcc.utoronto.ca/~cks/space/blog/tech/SSHKeysAreInfoLeak",
"https://www.openwall.com/lists/oss-security/2018/08/24/1",
"https://github.com/openssh/openssh-portable/blob/d0fffc88c8fe90c1815c6f4097bc8cbcabc0f3dd/auth2-pubkey.c#L261-L265",
"https://github.com/openssh/openssh-portable/pull/270",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-920577097",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-943909185",
"https://rushter.com/blog/public-ssh-keys/",
"https://security.netapp.com/advisory/ntap-20211014-0005/",
"https://utcc.utoronto.ca/~cks/space/blog/tech/SSHKeysAreInfoLeak",
"https://www.openwall.com/lists/oss-security/2018/08/24/1"
],
"score": 5.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"weakness": "NVD-CWE-Other"
},
"CVE-2021-36368": {
"id": "CVE-2021-36368",
"references": [
"https://bugzilla.mindrot.org/show_bug.cgi?id=3316",
"https://docs.ssh-mitm.at/trivialauth.html",
"https://github.com/openssh/openssh-portable/pull/258",
"https://security-tracker.debian.org/tracker/CVE-2021-36368",
"https://www.openssh.com/security.html",
"https://bugzilla.mindrot.org/show_bug.cgi?id=3316",
"https://docs.ssh-mitm.at/trivialauth.html",
"https://github.com/openssh/openssh-portable/pull/258",
"https://security-tracker.debian.org/tracker/CVE-2021-36368",
"https://www.openssh.com/security.html"
],
"score": 3.7,
"services": [
"22/ssh"
],
"severity": "low",
"summary": "An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is \"this is not an authentication bypass, since nothing is being bypassed.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"weakness": "CWE-287"
},
"CVE-2021-41617": {
"id": "CVE-2021-41617",
"references": [
"https://bugzilla.suse.com/show_bug.cgi?id=1190975",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XJIONMHMKZDTMH6BQR5TNLF2WDCGWED/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KVI7RWM2JLNMWTOFK6BDUSGNOIPZYPUT/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W44V2PFQH5YLRN6ZJTVRKAD7CU6CYYET/",
"https://security.netapp.com/advisory/ntap-20211014-0004/",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-8.8",
"https://www.openwall.com/lists/oss-security/2021/09/26/1",
"https://www.oracle.com/security-alerts/cpuapr2022.html",
"https://www.oracle.com/security-alerts/cpujul2022.html",
"https://www.starwindsoftware.com/security/sw-20220805-0001/",
"https://www.tenable.com/plugins/nessus/154174",
"https://bugzilla.suse.com/show_bug.cgi?id=1190975",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XJIONMHMKZDTMH6BQR5TNLF2WDCGWED/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KVI7RWM2JLNMWTOFK6BDUSGNOIPZYPUT/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W44V2PFQH5YLRN6ZJTVRKAD7CU6CYYET/",
"https://security.netapp.com/advisory/ntap-20211014-0004/",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-8.8",
"https://www.openwall.com/lists/oss-security/2021/09/26/1",
"https://www.oracle.com/security-alerts/cpuapr2022.html",
"https://www.oracle.com/security-alerts/cpujul2022.html",
"https://www.starwindsoftware.com/security/sw-20220805-0001/",
"https://www.tenable.com/plugins/nessus/154174"
],
"score": 7,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.",
"vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "NVD-CWE-Other"
},
"CVE-2023-25690": {
"id": "CVE-2023-25690",
"references": [
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01",
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 9.8,
"services": [
"80/http"
],
"severity": "critical",
"summary": "Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack.\n\n\n\n\nConfigurations are affected when mod_proxy is enabled along with some form of RewriteRule\n or ProxyPassMatch in which a non-specific pattern matches\n some portion of the user-supplied request-target (URL) data and is then\n re-inserted into the proxied request-target using variable \nsubstitution. For example, something like:\n\n\n\n\nRewriteEngine on\nRewriteRule \"^/here/(.*)\" \"http://example.com:8080/elsewhere?$1\"; [P]\nProxyPassReverse /here/ http://example.com:8080/\n\n\nRequest splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-444"
},
"CVE-2023-27522": {
"id": "CVE-2023-27522",
"references": [
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 7.5,
"services": [
"80/http"
],
"severity": "high",
"summary": "HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55.nnSpecial characters in the origin response header can truncate/split the response forwarded to the client.nnn",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-444"
},
"CVE-2023-38408": {
"id": "CVE-2023-38408",
"references": [
"http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html",
"http://www.openwall.com/lists/oss-security/2023/07/20/1",
"http://www.openwall.com/lists/oss-security/2023/07/20/2",
"http://www.openwall.com/lists/oss-security/2023/09/22/11",
"http://www.openwall.com/lists/oss-security/2023/09/22/9",
"https://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent",
"https://github.com/openbsd/src/commit/7bc29a9d5cd697290aa056e94ecee6253d3425f8",
"https://github.com/openbsd/src/commit/f03a4faa55c4ce0818324701dadbf91988d7351d",
"https://github.com/openbsd/src/commit/f8f5a6b003981bb824329dc987d101977beda7ca",
"https://lists.debian.org/debian-lts-announce/2023/08/msg00021.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CEBTJJINE2I3FHAUKKNQWMFGYMLSMWKQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RAXVQS6ZYTULFAK3TEJHRLKZALJS3AOU/",
"https://news.ycombinator.com/item?id=36790196",
"https://security.gentoo.org/glsa/202307-01",
"https://security.netapp.com/advisory/ntap-20230803-0010/",
"https://support.apple.com/kb/HT213940",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-9.3p2",
"https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt",
"https://www.vicarius.io/vsociety/posts/exploring-opensshs-agent-forwarding-rce-cve-2023-38408",
"http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html",
"http://www.openwall.com/lists/oss-security/2023/07/20/1",
"http://www.openwall.com/lists/oss-security/2023/07/20/2",
"http://www.openwall.com/lists/oss-security/2023/09/22/11",
"http://www.openwall.com/lists/oss-security/2023/09/22/9",
"https://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent",
"https://github.com/openbsd/src/commit/7bc29a9d5cd697290aa056e94ecee6253d3425f8",
"https://github.com/openbsd/src/commit/f03a4faa55c4ce0818324701dadbf91988d7351d",
"https://github.com/openbsd/src/commit/f8f5a6b003981bb824329dc987d101977beda7ca",
"https://lists.debian.org/debian-lts-announce/2023/08/msg00021.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CEBTJJINE2I3FHAUKKNQWMFGYMLSMWKQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RAXVQS6ZYTULFAK3TEJHRLKZALJS3AOU/",
"https://news.ycombinator.com/item?id=36790196",
"https://security.gentoo.org/glsa/202307-01",
"https://security.netapp.com/advisory/ntap-20230803-0010/",
"https://support.apple.com/kb/HT213940",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-9.3p2",
"https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt",
"https://www.vicarius.io/vsociety/posts/exploring-opensshs-agent-forwarding-rce-cve-2023-38408"
],
"score": 9.8,
"services": [
"22/ssh"
],
"severity": "critical",
"summary": "The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-428"
},
"CVE-2023-48795": {
"id": "CVE-2023-48795",
"references": [
"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/18/3",
"http://www.openwall.com/lists/oss-security/2023/12/19/5",
"http://www.openwall.com/lists/oss-security/2023/12/20/3",
"http://www.openwall.com/lists/oss-security/2024/03/06/3",
"http://www.openwall.com/lists/oss-security/2024/04/17/8",
"https://access.redhat.com/security/cve/cve-2023-48795",
"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
"https://bugs.gentoo.org/920280",
"https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
"https://bugzilla.suse.com/show_bug.cgi?id=1217950",
"https://crates.io/crates/thrussh/versions",
"https://filezilla-project.org/versions.php",
"https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
"https://github.com/NixOS/nixpkgs/pull/275249",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
"https://github.com/advisories/GHSA-45x7-px36-x8w8",
"https://github.com/apache/mina-sshd/issues/445",
"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
"https://github.com/cyd01/KiTTY/issues/520",
"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
"https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
"https://github.com/hierynomus/sshj/issues/916",
"https://github.com/janmojzis/tinyssh/issues/81",
"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
"https://github.com/libssh2/libssh2/pull/1291",
"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
"https://github.com/mwiede/jsch/issues/457",
"https://github.com/mwiede/jsch/pull/461",
"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
"https://github.com/openssh/openssh-portable/commits/master",
"https://github.com/paramiko/paramiko/issues/2337",
"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/456",
"https://github.com/rapier1/hpn-ssh/releases",
"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
"https://github.com/ronf/asyncssh/tags",
"https://github.com/ssh-mitm/ssh-mitm/issues/165",
"https://github.com/warp-tech/russh/releases/tag/v0.40.2",
"https://gitlab.com/libssh/libssh-mirror/-/tags",
"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
"https://help.panic.com/releasenotes/transmit5/",
"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
"https://matt.ucc.asn.au/dropbear/CHANGES",
"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
"https://news.ycombinator.com/item?id=38684904",
"https://news.ycombinator.com/item?id=38685286",
"https://news.ycombinator.com/item?id=38732005",
"https://nova.app/releases/#v11.8",
"https://oryx-embedded.com/download/#changelog",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
"https://roumenpetrov.info/secsh/#news20231220",
"https://security-tracker.debian.org/tracker/CVE-2023-48795",
"https://security-tracker.debian.org/tracker/source-package/libssh2",
"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
"https://security.gentoo.org/glsa/202312-16",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0004/",
"https://support.apple.com/kb/HT214084",
"https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
"https://twitter.com/TrueSkrillor/status/1736774389725565005",
"https://ubuntu.com/security/CVE-2023-48795",
"https://winscp.net/eng/docs/history#6.2.2",
"https://www.bitvise.com/ssh-client-version-history#933",
"https://www.bitvise.com/ssh-server-version-history",
"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.debian.org/security/2023/dsa-5588",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
"https://www.netsarang.com/en/xshell-update-history/",
"https://www.openssh.com/openbsd.html",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"https://www.openwall.com/lists/oss-security/2023/12/20/3",
"https://www.paramiko.org/changelog.html",
"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
"https://www.terrapin-attack.com",
"https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
"https://www.vandyke.com/products/securecrt/history.txt",
"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/18/3",
"http://www.openwall.com/lists/oss-security/2023/12/19/5",
"http://www.openwall.com/lists/oss-security/2023/12/20/3",
"http://www.openwall.com/lists/oss-security/2024/03/06/3",
"http://www.openwall.com/lists/oss-security/2024/04/17/8",
"https://access.redhat.com/security/cve/cve-2023-48795",
"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
"https://bugs.gentoo.org/920280",
"https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
"https://bugzilla.suse.com/show_bug.cgi?id=1217950",
"https://crates.io/crates/thrussh/versions",
"https://filezilla-project.org/versions.php",
"https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
"https://github.com/NixOS/nixpkgs/pull/275249",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
"https://github.com/advisories/GHSA-45x7-px36-x8w8",
"https://github.com/apache/mina-sshd/issues/445",
"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
"https://github.com/cyd01/KiTTY/issues/520",
"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
"https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
"https://github.com/hierynomus/sshj/issues/916",
"https://github.com/janmojzis/tinyssh/issues/81",
"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
"https://github.com/libssh2/libssh2/pull/1291",
"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
"https://github.com/mwiede/jsch/issues/457",
"https://github.com/mwiede/jsch/pull/461",
"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
"https://github.com/openssh/openssh-portable/commits/master",
"https://github.com/paramiko/paramiko/issues/2337",
"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/456",
"https://github.com/rapier1/hpn-ssh/releases",
"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
"https://github.com/ronf/asyncssh/tags",
"https://github.com/ssh-mitm/ssh-mitm/issues/165",
"https://github.com/warp-tech/russh/releases/tag/v0.40.2",
"https://gitlab.com/libssh/libssh-mirror/-/tags",
"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
"https://help.panic.com/releasenotes/transmit5/",
"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
"https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html",
"https://lists.debian.org/debian-lts-announce/2024/11/msg00032.html",
"https://lists.debian.org/debian-lts-announce/2025/04/msg00028.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://matt.ucc.asn.au/dropbear/CHANGES",
"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
"https://news.ycombinator.com/item?id=38684904",
"https://news.ycombinator.com/item?id=38685286",
"https://news.ycombinator.com/item?id=38732005",
"https://nova.app/releases/#v11.8",
"https://oryx-embedded.com/download/#changelog",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
"https://roumenpetrov.info/secsh/#news20231220",
"https://security-tracker.debian.org/tracker/CVE-2023-48795",
"https://security-tracker.debian.org/tracker/source-package/libssh2",
"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
"https://security.gentoo.org/glsa/202312-16",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0004/",
"https://support.apple.com/kb/HT214084",
"https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
"https://twitter.com/TrueSkrillor/status/1736774389725565005",
"https://ubuntu.com/security/CVE-2023-48795",
"https://winscp.net/eng/docs/history#6.2.2",
"https://www.bitvise.com/ssh-client-version-history#933",
"https://www.bitvise.com/ssh-server-version-history",
"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.debian.org/security/2023/dsa-5588",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
"https://www.netsarang.com/en/xshell-update-history/",
"https://www.openssh.com/openbsd.html",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"https://www.openwall.com/lists/oss-security/2023/12/20/3",
"https://www.paramiko.org/changelog.html",
"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
"https://www.terrapin-attack.com",
"https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
"https://www.vandyke.com/products/securecrt/history.txt",
"https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit",
"https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability"
],
"score": 5.9,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in [email protected] and (if CBC is used) the [email protected] MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-354"
},
"CVE-2023-51384": {
"id": "CVE-2023-51384",
"references": [
"http://seclists.org/fulldisclosure/2024/Mar/21",
"https://github.com/openssh/openssh-portable/commit/881d9c6af9da4257c69c327c4e2f1508b2fa754b",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"https://github.com/openssh/openssh-portable/commit/881d9c6af9da4257c69c327c4e2f1508b2fa754b",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2"
],
"score": 5.5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.",
"vector_string": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-2023-51385": {
"id": "CVE-2023-51385",
"references": [
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/26/4",
"https://github.com/openssh/openssh-portable/commit/7ef3787c84b6b524501211b11a26c742f829af1a",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://vin01.github.io/piptagole/ssh/security/openssh/libssh/remote-code-execution/2023/12/20/openssh-proxycommand-libssh-rce.html",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/26/4",
"http://www.openwall.com/lists/oss-security/2025/10/07/1",
"http://www.openwall.com/lists/oss-security/2025/10/12/1",
"https://github.com/openssh/openssh-portable/commit/7ef3787c84b6b524501211b11a26c742f829af1a",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://vin01.github.io/piptagole/ssh/security/openssh/libssh/remote-code-execution/2023/12/20/openssh-proxycommand-libssh-rce.html",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2"
],
"score": 6.5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"weakness": "CWE-78"
},
"CVE-2023-51767": {
"id": "CVE-2023-51767",
"references": [
"https://access.redhat.com/security/cve/CVE-2023-51767",
"https://arxiv.org/abs/2309.02545",
"https://bugzilla.redhat.com/show_bug.cgi?id=2255850",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/auth-passwd.c#L77",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/monitor.c#L878",
"https://security.netapp.com/advisory/ntap-20240125-0006/",
"https://ubuntu.com/security/CVE-2023-51767",
"https://www.openwall.com/lists/oss-security/2025/09/22/1",
"http://www.openwall.com/lists/oss-security/2025/09/22/1",
"http://www.openwall.com/lists/oss-security/2025/09/22/2",
"http://www.openwall.com/lists/oss-security/2025/09/23/1",
"http://www.openwall.com/lists/oss-security/2025/09/23/3",
"http://www.openwall.com/lists/oss-security/2025/09/23/4",
"http://www.openwall.com/lists/oss-security/2025/09/23/5",
"http://www.openwall.com/lists/oss-security/2025/09/24/4",
"http://www.openwall.com/lists/oss-security/2025/09/24/7",
"http://www.openwall.com/lists/oss-security/2025/09/25/2",
"http://www.openwall.com/lists/oss-security/2025/09/25/6",
"http://www.openwall.com/lists/oss-security/2025/09/26/2",
"http://www.openwall.com/lists/oss-security/2025/09/26/4",
"http://www.openwall.com/lists/oss-security/2025/09/27/1",
"http://www.openwall.com/lists/oss-security/2025/09/27/2",
"http://www.openwall.com/lists/oss-security/2025/09/27/3",
"http://www.openwall.com/lists/oss-security/2025/09/27/4",
"http://www.openwall.com/lists/oss-security/2025/09/27/5",
"http://www.openwall.com/lists/oss-security/2025/09/27/6",
"http://www.openwall.com/lists/oss-security/2025/09/27/7",
"http://www.openwall.com/lists/oss-security/2025/09/28/7",
"http://www.openwall.com/lists/oss-security/2025/09/29/1",
"http://www.openwall.com/lists/oss-security/2025/09/29/4",
"http://www.openwall.com/lists/oss-security/2025/09/29/5",
"http://www.openwall.com/lists/oss-security/2025/09/29/6",
"http://www.openwall.com/lists/oss-security/2025/10/01/1",
"http://www.openwall.com/lists/oss-security/2025/10/01/2",
"https://access.redhat.com/security/cve/CVE-2023-51767",
"https://arxiv.org/abs/2309.02545",
"https://bugzilla.redhat.com/show_bug.cgi?id=2255850",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/auth-passwd.c#L77",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/monitor.c#L878",
"https://security.netapp.com/advisory/ntap-20240125-0006/",
"https://ubuntu.com/security/CVE-2023-51767"
],
"score": 7,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "OpenSSH through 10.0, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges. NOTE: this is disputed by the Supplier, who states \"we do not consider it to be the application's responsibility to defend against platform architectural weaknesses.\"",
"vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "NVD-CWE-Other"
},
"CVE-2024-6387": {
"id": "CVE-2024-6387",
"references": [
"https://access.redhat.com/errata/RHSA-2024:4312",
"https://access.redhat.com/errata/RHSA-2024:4340",
"https://access.redhat.com/errata/RHSA-2024:4389",
"https://access.redhat.com/errata/RHSA-2024:4469",
"https://access.redhat.com/errata/RHSA-2024:4474",
"https://access.redhat.com/errata/RHSA-2024:4479",
"https://access.redhat.com/errata/RHSA-2024:4484",
"https://access.redhat.com/security/cve/CVE-2024-6387",
"https://bugzilla.redhat.com/show_bug.cgi?id=2294604",
"https://santandersecurityresearch.github.io/blog/sshing_the_masses.html",
"https://www.openssh.com/txt/release-9.8",
"https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt",
"http://seclists.org/fulldisclosure/2024/Jul/18",
"http://seclists.org/fulldisclosure/2024/Jul/19",
"http://seclists.org/fulldisclosure/2024/Jul/20",
"http://www.openwall.com/lists/oss-security/2024/07/01/12",
"http://www.openwall.com/lists/oss-security/2024/07/01/13",
"http://www.openwall.com/lists/oss-security/2024/07/02/1",
"http://www.openwall.com/lists/oss-security/2024/07/03/1",
"http://www.openwall.com/lists/oss-security/2024/07/03/11",
"http://www.openwall.com/lists/oss-security/2024/07/03/2",
"http://www.openwall.com/lists/oss-security/2024/07/03/3",
"http://www.openwall.com/lists/oss-security/2024/07/03/4",
"http://www.openwall.com/lists/oss-security/2024/07/03/5",
"http://www.openwall.com/lists/oss-security/2024/07/04/1",
"http://www.openwall.com/lists/oss-security/2024/07/04/2",
"http://www.openwall.com/lists/oss-security/2024/07/08/2",
"http://www.openwall.com/lists/oss-security/2024/07/08/3",
"http://www.openwall.com/lists/oss-security/2024/07/09/2",
"http://www.openwall.com/lists/oss-security/2024/07/09/5",
"http://www.openwall.com/lists/oss-security/2024/07/10/1",
"http://www.openwall.com/lists/oss-security/2024/07/10/2",
"http://www.openwall.com/lists/oss-security/2024/07/10/3",
"http://www.openwall.com/lists/oss-security/2024/07/10/4",
"http://www.openwall.com/lists/oss-security/2024/07/10/6",
"http://www.openwall.com/lists/oss-security/2024/07/11/1",
"http://www.openwall.com/lists/oss-security/2024/07/11/3",
"http://www.openwall.com/lists/oss-security/2024/07/23/4",
"http://www.openwall.com/lists/oss-security/2024/07/23/6",
"http://www.openwall.com/lists/oss-security/2024/07/28/2",
"http://www.openwall.com/lists/oss-security/2024/07/28/3",
"https://access.redhat.com/errata/RHSA-2024:4312",
"https://access.redhat.com/errata/RHSA-2024:4340",
"https://access.redhat.com/errata/RHSA-2024:4389",
"https://access.redhat.com/errata/RHSA-2024:4469",
"https://access.redhat.com/errata/RHSA-2024:4474",
"https://access.redhat.com/errata/RHSA-2024:4479",
"https://access.redhat.com/errata/RHSA-2024:4484",
"https://access.redhat.com/security/cve/CVE-2024-6387",
"https://archlinux.org/news/the-sshd-service-needs-to-be-restarted-after-upgrading-to-openssh-98p1/",
"https://arstechnica.com/security/2024/07/regresshion-vulnerability-in-openssh-gives-attackers-root-on-linux/",
"https://blog.qualys.com/vulnerabilities-threat-research/2024/07/01/regresshion-remote-unauthenticated-code-execution-vulnerability-in-openssh-server",
"https://bugzilla.redhat.com/show_bug.cgi?id=2294604",
"https://explore.alas.aws.amazon.com/CVE-2024-6387.html",
"https://forum.vmssoftware.com/viewtopic.php?f=8&t=9132",
"https://ftp.netbsd.org/pub/NetBSD/security/advisories/NetBSD-SA2024-002.txt.asc",
"https://github.com/AlmaLinux/updates/issues/629",
"https://github.com/Azure/AKS/issues/4379",
"https://github.com/PowerShell/Win32-OpenSSH/discussions/2248",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2249",
"https://github.com/microsoft/azurelinux/issues/9555",
"https://github.com/openela-main/openssh/commit/e1f438970e5a337a17070a637c1b9e19697cad09",
"https://github.com/oracle/oracle-linux/issues/149",
"https://github.com/rapier1/hpn-ssh/issues/87",
"https://github.com/zgzhang/cve-2024-6387-poc",
"https://lists.almalinux.org/archives/list/[email protected]/thread/23BF5BMGFVEVUI2WNVAGMLKT557EU7VY/",
"https://lists.mindrot.org/pipermail/openssh-unix-announce/2024-July/000158.html",
"https://lists.mindrot.org/pipermail/openssh-unix-dev/2024-July/041431.html",
"https://news.ycombinator.com/item?id=40843778",
"https://packetstorm.news/files/id/190587/",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0010",
"https://santandersecurityresearch.github.io/blog/sshing_the_masses.html",
"https://security-tracker.debian.org/tracker/CVE-2024-6387",
"https://security.netapp.com/advisory/ntap-20240701-0001/",
"https://sig-security.rocky.page/issues/CVE-2024-6387/",
"https://stackdiary.com/openssh-race-condition-in-sshd-allows-remote-code-execution/",
"https://support.apple.com/kb/HT214118",
"https://support.apple.com/kb/HT214119",
"https://support.apple.com/kb/HT214120",
"https://ubuntu.com/security/CVE-2024-6387",
"https://ubuntu.com/security/notices/USN-6859-1",
"https://www.akamai.com/blog/security-research/2024-openssh-vulnerability-regression-what-to-know-and-do",
"https://www.arista.com/en/support/advisories-notices/security-advisory/19904-security-advisory-0100",
"https://www.exploit-db.com/exploits/52269",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-24:04.openssh.asc",
"https://www.openssh.com/txt/release-9.8",
"https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt",
"https://www.splunk.com/en_us/blog/security/cve-2024-6387-regresshion-vulnerability.html",
"https://www.suse.com/security/cve/CVE-2024-6387.html",
"https://www.theregister.com/2024/07/01/regresshion_openssh/",
"https://www.vicarius.io/vsociety/posts/regresshion-an-openssh-regression-error-cve-2024-6387"
],
"score": 8.1,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-364"
}
}
}