182.160.154.152
{
"scan_id": 1751324060,
"ip": "182.160.154.152",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "182.160.154.0/24",
"postal_code": "2765",
"coordinates": {
"latitude": "-33.6087",
"longitude": "150.8905"
},
"geo_point": "-33.6087, 150.8905",
"locale_code": "en",
"continent": "Oceania",
"country_code": "AU",
"country_name": "Australia",
"city": "Bungarribee"
},
"location_updated_at": "2025-07-01T16:42:37Z",
"asn": {
"number": "AS55803",
"organization": "Hostopia Australia Web Pty Ltd",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "182.160.154.0/24",
"organization": "Hostopia Australia Web Pty Ltd",
"descr": "Hostopia Australia Web Pty Ltd,\n201 Elizabeth St,\nLevel 11",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-09T11:27:16Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2025-07-01T16:42:37Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2025-07-01T19:00:00Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2025-07-01T16:42:37Z"
}
],
"hostnames": [
{
"name": "182.160.154.152-static.reverse.crucialx.net",
"last_updated_at": "2025-07-03T08:24:58.053577234Z"
}
],
"services": [
{
"port": 21,
"protocol": "tcp",
"name": "ftp",
"version": "",
"product": "Pure-FTPd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:pureftpd:pure-ftpd",
"part": "a",
"vendor": "pureftpd",
"product": "pure\\-ftpd",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"ftp": {
"banner": "220---------- Welcome to Pure-FTPd [privsep] [TLS] ----------\r\n220-You are user number 1 of 50 allowed.\r\n220-Local time is now 09:51. Server port: 21.\r\n220-This is a private system - No anonymous login\r\n220-IPv6 connections are also welcome on this server.\r\n220 You will be disconnected after 15 minutes of inactivity.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_key_id": "keyid117eb46adcb112edf2a7d9e8e9f0c0ceed0366e8\ndirname/cn=devd.intellichoice.com.au/[email protected]\nserialb6d4209b",
"basic_constraints": {
"is_ca": true
},
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"subject_alt_name": {
"dns_names": [
"devd.intellichoice.com.au"
]
},
"subject_key_id": "117eb46adcb112edf2a7d9e8e9f0c0ceed0366e8"
},
"fingerprint_md5": "8301990094C26C5138A30F714CD4C709",
"fingerprint_sha1": "ECD02502068E433891BE422929EAB925EBDAFD1B",
"fingerprint_sha256": "3EE8CA93230B207F49171DE05D45E098D22ECA8960ACF32AD3E885928DD28A38",
"issuer": {
"common_name": [
"devd.intellichoice.com.au"
],
"email_address": [
"[email protected]"
]
},
"issuer_dn": "/CN=devd.intellichoice.com.au/[email protected]",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "3067355291",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "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"
},
"subject": {
"common_name": [
"devd.intellichoice.com.au"
],
"email_address": [
"[email protected]"
]
},
"subject_alt_name": {
"dns_names": [
"devd.intellichoice.com.au"
],
"extended_dns_names": [
{
"domain": "intellichoice",
"fld": "intellichoice.com.au",
"subdomain": "devd",
"tld": "com.au"
}
]
},
"subject_dn": "/CN=devd.intellichoice.com.au/[email protected]",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "b7395f8641310c68d1e17af7b134283f44eea96efa3fca40048c4d271903d38c",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "644c34b3740911ffefa3e9d43d1fa24f27b2662a677a8724b98afd4b04a86aa4",
"validation_level": "OV",
"validity": {
"length_seconds": 31536000,
"not_after": "2024-12-16T02:52:18",
"not_before": "2023-12-17T02:52:18"
},
"version": 2
},
"fingerprint_sha256": "3EE8CA93230B207F49171DE05D45E098D22ECA8960ACF32AD3E885928DD28A38",
"precert": false,
"raw": "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",
"tags": [
"ov",
"trusted",
"self_signed",
"root"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-07-02T23:52:06.764Z"
},
{
"port": 22,
"protocol": "tcp",
"name": "ssh",
"version": "7.4",
"product": "OpenSSH",
"extra_info": "protocol 2.0",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:openbsd:openssh:7.4",
"part": "a",
"vendor": "openbsd",
"product": "openssh",
"version": "7\\.4",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"ssh": {
"banner": "SSH-2.0-OpenSSH_7.4",
"client_to_server_ciphers": [
"[email protected]",
"aes128-ctr",
"aes192-ctr",
"aes256-ctr",
"[email protected]",
"[email protected]",
"aes128-cbc",
"aes192-cbc",
"aes256-cbc",
"blowfish-cbc",
"cast128-cbc",
"3des-cbc"
],
"client_to_server_compression": [
"none",
"[email protected]"
],
"client_to_server_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha2-512",
"hmac-sha1"
],
"host_key_algorithms": [
"ssh-rsa",
"rsa-sha2-512",
"rsa-sha2-256",
"ecdsa-sha2-nistp256",
"ssh-ed25519"
],
"kex_algorithms": [
"curve25519-sha256",
"[email protected]",
"ecdh-sha2-nistp256",
"ecdh-sha2-nistp384",
"ecdh-sha2-nistp521",
"diffie-hellman-group-exchange-sha256",
"diffie-hellman-group16-sha512",
"diffie-hellman-group18-sha512",
"diffie-hellman-group-exchange-sha1",
"diffie-hellman-group14-sha256",
"diffie-hellman-group14-sha1",
"diffie-hellman-group1-sha1",
"[email protected]"
],
"key": {
"algorithm": "ecdsa-sha2-nistp256",
"fingerprint_sha256": "5a677c27d8b822f2e47a938d5e8284e79c78deb9af3572592aaf49e8c5b510b0",
"raw": "AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBJvPjBHYzD1Tqc4t9n/wJ8XSyccdSC55lDDanoiEuyHyE9QR83WoQQ7PL0tPrE5G1/Urornbolu9nMlzAq+oWX4="
},
"server_to_client_ciphers": [
"[email protected]",
"aes128-ctr",
"aes192-ctr",
"aes256-ctr",
"[email protected]",
"[email protected]",
"aes128-cbc",
"aes192-cbc",
"aes256-cbc",
"blowfish-cbc",
"cast128-cbc",
"3des-cbc"
],
"server_to_client_compression": [
"none",
"[email protected]"
],
"server_to_client_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha2-512",
"hmac-sha1"
],
"software": "OpenSSH_7.4",
"version": "2.0"
}
},
"cve": [
{
"id": "CVE-2007-2768",
"score": 4.3,
"severity": "medium"
},
{
"id": "CVE-2008-3844",
"score": 9.3,
"severity": "high"
},
{
"id": "CVE-2016-20012",
"score": 5.3,
"severity": "medium"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-27T20:44:20.872Z"
},
{
"port": 25,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"modules": {
"tls": {
"certificate": {
"extensions": {
"authority_key_id": "keyid582610948323e250a6cb22f221723d7c098fe5d5\ndirname/[email protected]/cn=devd.intellichoice.com.au\nserial015e905973",
"basic_constraints": {
"is_ca": true
},
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"subject_alt_name": {
"dns_names": [
"devd.intellichoice.com.au"
]
},
"subject_key_id": "582610948323e250a6cb22f221723d7c098fe5d5"
},
"fingerprint_md5": "98C86F553BD67DD4C11EF3393F4ECB75",
"fingerprint_sha1": "DC7D99AEA2BC6DD549A8A7C5C83198772DB46522",
"fingerprint_sha256": "3C665639BFC881AFB29C120F421E8FAC498E192FBD9D59F431EECF41D56E0821",
"issuer": {
"common_name": [
"devd.intellichoice.com.au"
],
"email_address": [
"[email protected]"
]
},
"issuer_dn": "/[email protected]/CN=devd.intellichoice.com.au",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "5881485683",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "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"
},
"subject": {
"common_name": [
"devd.intellichoice.com.au"
],
"email_address": [
"[email protected]"
]
},
"subject_alt_name": {
"dns_names": [
"devd.intellichoice.com.au"
],
"extended_dns_names": [
{
"domain": "intellichoice",
"fld": "intellichoice.com.au",
"subdomain": "devd",
"tld": "com.au"
}
]
},
"subject_dn": "/[email protected]/CN=devd.intellichoice.com.au",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "a567593d514e36813a4fe343203a3eefa9dfb6db15c80e33543ec841f3c66c9d",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "22aff274c25b89d95f0846962f736285b100e93b750d10ff6e994b1e48e946ea",
"validation_level": "OV",
"validity": {
"length_seconds": 31536000,
"not_after": "2024-12-18T00:42:45",
"not_before": "2023-12-19T00:42:45"
},
"version": 2
},
"fingerprint_sha256": "3C665639BFC881AFB29C120F421E8FAC498E192FBD9D59F431EECF41D56E0821",
"precert": false,
"raw": "MIIEFjCCAv6gAwIBAgIFAV6QWXMwDQYJKoZIhvcNAQELBQAwUjEsMCoGCSqGSIb3DQEJARYdc3NsQGRldmQuaW50ZWxsaWNob2ljZS5jb20uYXUxIjAgBgNVBAMMGWRldmQuaW50ZWxsaWNob2ljZS5jb20uYXUwHhcNMjMxMjE5MDA0MjQ1WhcNMjQxMjE4MDA0MjQ1WjBSMSwwKgYJKoZIhvcNAQkBFh1zc2xAZGV2ZC5pbnRlbGxpY2hvaWNlLmNvbS5hdTEiMCAGA1UEAwwZZGV2ZC5pbnRlbGxpY2hvaWNlLmNvbS5hdTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK+8M7/OQl6P59DgfO9iFdyT6BS9Rz85VA8lR5zqXul0NMVpPMJfwsuMyeEKz2iK1WxyjjIzVeaKCeA+pbAi2etQoKaUsnDmqDqLWYxXAWqzR/aIc959N+3ztlLTW2iKnOyEuiXzzLsYRlK3NIaJ7xMcSok2EG1SovNSIr8qJuVF17Ive1QBbnbYGQO3ZYCiOoY9xro0ym3mZLyDE+V6G1nqnbMeE5vd4qY5V0PY6pPVJkp2XU0/slBoV+DyTjePMohTeVLlqNSSW4VLYKr6SKbDK9EKwLc7TK3Ie2ILO7R/yU3uJ8PsAx8hHPUDb2RdEoARPs57t9rNo6eCrOEAWjsCAwEAAaOB8jCB7zAdBgNVHQ4EFgQUWCYQlIMj4lCmyyLyIXI9fAmP5dUwCQYDVR0TBAIwADB+BgNVHSMEdzB1gBRYJhCUgyPiUKbLIvIhcj18CY/l1aFWpFQwUjEsMCoGCSqGSIb3DQEJARYdc3NsQGRldmQuaW50ZWxsaWNob2ljZS5jb20uYXUxIjAgBgNVBAMMGWRldmQuaW50ZWxsaWNob2ljZS5jb20uYXWCBQFekFlzMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAkBgNVHREEHTAbghlkZXZkLmludGVsbGljaG9pY2UuY29tLmF1MA0GCSqGSIb3DQEBCwUAA4IBAQAfXCDQEA1pvRs0UGrmD/LZ94nQLrGB1FJCRx+A2JI3xCVhd9aFVvye5T1zPpWpG+IcGNWRdDmybC8mRKYvY929ejGG/RrCS9gtd/gNmtSKxxr1R4yifGID0ReVbi97qDIvJEkEfmILtL+qJGyomcB/rIED/qKQ7mEpPsuijGciEAbySmHfptzpbVGDlalHebfdcmWnw2vjrYTwiKTHlV4SJhI9YeLDUdk7tmBTNFyFf9wIBk+k7AVFU+0rUDqu5dwCjhrFeYMHDfqnymMJBI2bLdVbjUDkL48fR4tDAVGO4fj25/lNpyyOViML53TRPKn+q8hDTtMalGzEJ+J5z3mV",
"tags": [
"ov",
"trusted",
"self_signed",
"root"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-30T13:07:57.012Z"
},
{
"port": 80,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<html><head><META HTTP-EQUIV=\"Cache-control\" CONTENT=\"no-cache\"><META HTTP-EQUIV=\"refresh\" CONTENT=\"0;URL=/cgi-sys/defaultwebpage.cgi\"></head><body></body></html>\n",
"body_murmur": -1507725539,
"body_sha256": "9278d16ed2fdcd5dc651615b0b8adc6b55fb667a9d106a9891b861d4561d9a24",
"component": [
"Apache HTTP Server"
],
"content_length": 163,
"headers": {
"accept_ranges": [
"bytes"
],
"cache_control": [
"no-cache, no-store, must-revalidate"
],
"connection": [
"Upgrade"
],
"content_length": [
"163"
],
"content_type": [
"text/html"
],
"date": [
"Tue, 01 Jul 2025 12:56:57 GMT"
],
"expires": [
"0"
],
"last_modified": [
"Thu, 12 Dec 2024 17:26:56 GMT"
],
"pragma": [
"no-cache"
],
"server": [
"Apache"
],
"upgrade": [
"h2,h2c"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "182.160.154.152",
"path": "",
"scheme": "http"
}
},
"status_code": 200
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "http://182.160.154.152/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-07-01T12:56:57.693Z"
},
{
"port": 110,
"protocol": "tcp",
"name": "pop3",
"version": "",
"product": "Dovecot pop3d",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"pop3": {
"banner": "+OK Dovecot ready.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_key_id": "keyidec10980a936eae9c89a6f2dadc447fb5d241a9d4\ndirname/cn=devd.intellichoice.com.au/[email protected]\nserial174d6bec",
"basic_constraints": {
"is_ca": true
},
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"subject_alt_name": {
"dns_names": [
"devd.intellichoice.com.au"
]
},
"subject_key_id": "ec10980a936eae9c89a6f2dadc447fb5d241a9d4"
},
"fingerprint_md5": "FD73FAA8CC39107A45098B372BFD0B7C",
"fingerprint_sha1": "40F43AE192A95AAF15398A8A1ACC75364A7E9276",
"fingerprint_sha256": "C51EBE854C7BD351A4DD7A932600B5B337B233EF0C899DD38648076CE474978B",
"issuer": {
"common_name": [
"devd.intellichoice.com.au"
],
"email_address": [
"[email protected]"
]
},
"issuer_dn": "/CN=devd.intellichoice.com.au/[email protected]",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "390949868",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "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"
},
"subject": {
"common_name": [
"devd.intellichoice.com.au"
],
"email_address": [
"[email protected]"
]
},
"subject_alt_name": {
"dns_names": [
"devd.intellichoice.com.au"
],
"extended_dns_names": [
{
"domain": "intellichoice",
"fld": "intellichoice.com.au",
"subdomain": "devd",
"tld": "com.au"
}
]
},
"subject_dn": "/CN=devd.intellichoice.com.au/[email protected]",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "fd4d995caeff9ac0987b39dc2b753fe6a3caec77a125b400da22cdbc845590c4",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "MHhjMzQ3NzcwNzI2MDEyZGJkZjRjZGJmYzYwNDI1MjAxZjZhYmY3YjU0Yjc5NzE3OThiODg4YzQ1M2FkNDdhYzQ3NTQ5YTg0NDNhMmQ5NzY1YTFhNTI1OTkwNDA1ZDAwY2E0Y2VhYzQxM2NjZWU4NmZjOThhNDg4MDg4ZTI3ZTcyN2ZmZWNhYWM4YzkzMzQxNTMwNzdlZmFkNGI3OTdjMmQ3YTEyOWIzMmNiZGQzZTg1MDU0NDk0Nzg1NTE4ZjRmY2Y4MDBiMDU2NDBhMGQ1NTY1MzU4MTM0NWM0NDBjNTFkY2YxYzI2MTc5ZWQ5NmQ3OWQxZmJkMGRjNWM0Zjc5OTkzZWIyZTEzMWY0MTc5M2JjYjRhYjAzY2UxMmQ5NTdhZGRkMDZhNzc2ZDg2ZThhYWY1ZjM4MWI2NTY2ZDEyMWM0OWJmYmVmYTA2ZjAyMTM4NGY4NDlmNDEwZTJmOTZhNTA0N2IwYzMzNWJmMjdmNWRmMzM4MDU1YzBmNzQ4ODliMTdiNTE0NDEzNmVjMGE4Y2FhYzc4NmVkZjc5MThkMTVjNDE2ZjNjNTBkZmRlNjE0N2U0ZWY0N2NiMTRkNzVkNmQ0MjM5NmVlZGU1MDgwZjkyMGQzMjY2ZDUzNWZiOWUyNGJmY2IyOWI0NzZlOTZlMWVmYmMwZTQ5Y2EwZmMyYzQzOQ=="
}
},
"tbs_fingerprint": "8715793380eaa4caf5b41c596cec9e6cd08e727542de14276eb30e55c815a88c",
"validation_level": "OV",
"validity": {
"length_seconds": 31536000,
"not_after": "2024-12-18T00:42:44",
"not_before": "2023-12-19T00:42:44"
},
"version": 2
},
"fingerprint_sha256": "C51EBE854C7BD351A4DD7A932600B5B337B233EF0C899DD38648076CE474978B",
"precert": false,
"raw": "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",
"tags": [
"ov",
"trusted",
"self_signed",
"root"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-07-01T17:13:51.672Z"
},
{
"port": 143,
"protocol": "tcp",
"name": "imap",
"version": "",
"product": "Dovecot imapd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"imap": {
"banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE NAMESPACE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_key_id": "keyidec10980a936eae9c89a6f2dadc447fb5d241a9d4\ndirname/cn=devd.intellichoice.com.au/[email protected]\nserial174d6bec",
"basic_constraints": {
"is_ca": true
},
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"subject_alt_name": {
"dns_names": [
"devd.intellichoice.com.au"
]
},
"subject_key_id": "ec10980a936eae9c89a6f2dadc447fb5d241a9d4"
},
"fingerprint_md5": "FD73FAA8CC39107A45098B372BFD0B7C",
"fingerprint_sha1": "40F43AE192A95AAF15398A8A1ACC75364A7E9276",
"fingerprint_sha256": "C51EBE854C7BD351A4DD7A932600B5B337B233EF0C899DD38648076CE474978B",
"issuer": {
"common_name": [
"devd.intellichoice.com.au"
],
"email_address": [
"[email protected]"
]
},
"issuer_dn": "/CN=devd.intellichoice.com.au/[email protected]",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "390949868",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "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"
},
"subject": {
"common_name": [
"devd.intellichoice.com.au"
],
"email_address": [
"[email protected]"
]
},
"subject_alt_name": {
"dns_names": [
"devd.intellichoice.com.au"
],
"extended_dns_names": [
{
"domain": "intellichoice",
"fld": "intellichoice.com.au",
"subdomain": "devd",
"tld": "com.au"
}
]
},
"subject_dn": "/CN=devd.intellichoice.com.au/[email protected]",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "fd4d995caeff9ac0987b39dc2b753fe6a3caec77a125b400da22cdbc845590c4",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "MHhjMzQ3NzcwNzI2MDEyZGJkZjRjZGJmYzYwNDI1MjAxZjZhYmY3YjU0Yjc5NzE3OThiODg4YzQ1M2FkNDdhYzQ3NTQ5YTg0NDNhMmQ5NzY1YTFhNTI1OTkwNDA1ZDAwY2E0Y2VhYzQxM2NjZWU4NmZjOThhNDg4MDg4ZTI3ZTcyN2ZmZWNhYWM4YzkzMzQxNTMwNzdlZmFkNGI3OTdjMmQ3YTEyOWIzMmNiZGQzZTg1MDU0NDk0Nzg1NTE4ZjRmY2Y4MDBiMDU2NDBhMGQ1NTY1MzU4MTM0NWM0NDBjNTFkY2YxYzI2MTc5ZWQ5NmQ3OWQxZmJkMGRjNWM0Zjc5OTkzZWIyZTEzMWY0MTc5M2JjYjRhYjAzY2UxMmQ5NTdhZGRkMDZhNzc2ZDg2ZThhYWY1ZjM4MWI2NTY2ZDEyMWM0OWJmYmVmYTA2ZjAyMTM4NGY4NDlmNDEwZTJmOTZhNTA0N2IwYzMzNWJmMjdmNWRmMzM4MDU1YzBmNzQ4ODliMTdiNTE0NDEzNmVjMGE4Y2FhYzc4NmVkZjc5MThkMTVjNDE2ZjNjNTBkZmRlNjE0N2U0ZWY0N2NiMTRkNzVkNmQ0MjM5NmVlZGU1MDgwZjkyMGQzMjY2ZDUzNWZiOWUyNGJmY2IyOWI0NzZlOTZlMWVmYmMwZTQ5Y2EwZmMyYzQzOQ=="
}
},
"tbs_fingerprint": "8715793380eaa4caf5b41c596cec9e6cd08e727542de14276eb30e55c815a88c",
"validation_level": "OV",
"validity": {
"length_seconds": 31536000,
"not_after": "2024-12-18T00:42:44",
"not_before": "2023-12-19T00:42:44"
},
"version": 2
},
"fingerprint_sha256": "C51EBE854C7BD351A4DD7A932600B5B337B233EF0C899DD38648076CE474978B",
"precert": false,
"raw": "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",
"tags": [
"ov",
"trusted",
"self_signed",
"root"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-30T04:21:27.328Z"
},
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "The provided host name is not valid for this server.",
"body_murmur": -1928140343,
"body_sha256": "65430b6b1e6f8401abb805877539d59c7c1745f6d7104f714ae1d6414e32f6f7",
"component": [
"Apache HTTP Server"
],
"content_length": -1,
"headers": {
"cache_control": [
"no-cache, private"
],
"content_type": [
"text/html; charset=UTF-8"
],
"date": [
"Sun, 29 Jun 2025 17:33:55 GMT"
],
"server": [
"Apache"
],
"upgrade": [
"h2,h2c"
],
"vary": [
"Accept-Encoding"
],
"x_content_type_options": [
"nosniff"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "182.160.154.152",
"path": "",
"scheme": "https"
}
},
"status_code": 400,
"transfer_encoding": [
"chunked"
]
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r10.i.lencr.org/"
],
"ocsp_urls": [
"http://r10.o.lencr.org"
]
},
"authority_key_id": "bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r10.c.lencr.org/65.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : DD:DC:CA:34:95:D7:E1:16:05:E7:95:32:FA:C7:9F:F8:\n 3D:1C:50:DF:DB:00:3A:14:12:76:0A:2C:AC:BB:C8:2A\n Timestamp : May 2 19:41:09.010 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:45:02:21:00:8F:01:9A:79:44:B7:75:DC:6E:E1:C7:\n A8:D0:E6:25:D7:53:3F:4C:B1:55:71:3B:12:D7:84:6C:\n E8:11:D4:6E:E9:02:20:57:71:1E:C2:41:E8:F8:11:EB:\n D7:0D:A0:18:B3:A0:BA:81:E2:06:E2:E4:B2:3C:7F:F7:\n A8:DF:01:77:0A:D1:7B\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 1A:04:FF:49:D0:54:1D:40:AF:F6:A0:C3:BF:F1:D8:C4:\n 67:2F:4E:EC:EE:23:40:68:98:6B:17:40:2E:DC:89:7D\n Timestamp : May 2 19:41:09.741 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:44:02:20:17:C9:8F:66:E3:89:89:93:62:71:5B:41:\n 8F:B9:BA:C4:15:23:5B:1E:1B:21:CB:75:35:8C:76:E2:\n A7:38:1E:31:02:20:44:C9:B3:96:24:88:A0:5E:69:91:\n 1F:A0:FF:EE:B7:71:7B:C4:37:7A:A3:CB:ED:AA:7F:DF:\n 7B:A8:B0:A0:A6:F5",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"dev.intellichoice.co"
]
},
"subject_key_id": "b84fbafa693990877ca00c765784f155aa080fac"
},
"fingerprint_md5": "2B8496D487AFEA66BC2243DB1D20408D",
"fingerprint_sha1": "1A8D1F85A52D40EDE0EE1E45F1B570FD0A915146",
"fingerprint_sha256": "52AA6829227E190F7ED83A258575C33BE8439FB75C1769C8E90B0FEBE407C6A3",
"issuer": {
"common_name": [
"R10"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R10",
"jarm": "07d14d16d21d21d07c42d43d000000270a013a3e21e28897e76e8fe13e2f7d",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2025-07-08T22:52:00",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"next_update": "2025-07-06T17:30:58",
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "581492503780751834623557079841030760611264",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "dddcca3495d7e11605e79532fac79ff83d1c50dfdb003a1412760a2cacbbc82a",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "30450221008f019a7944b775dc6ee1c7a8d0e625d7533f4cb155713b12d7846ce811d46ee9022057711ec241e8f811ebd70da018b3a0ba81e206e2e4b23c7ff7a8df01770ad17b"
},
"timestamp": "2025-05-02T19:41:09.010000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "1a04ff49d0541d40aff6a0c3bff1d8c4672f4eecee234068986b17402edc897d",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3044022017c98f66e389899362715b418fb9bac415235b1e1b21cb75358c76e2a7381e31022044c9b3962488a05e69911fa0ffeeb7717bc4377aa3cbedaa7fdf7ba8b0a0a6f5"
},
"timestamp": "2025-05-02T19:41:09.741000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"dev.intellichoice.co"
]
},
"subject_alt_name": {
"dns_names": [
"dev.intellichoice.co"
],
"extended_dns_names": [
{
"domain": "intellichoice",
"fld": "intellichoice.co",
"subdomain": "dev",
"tld": "co"
}
]
},
"subject_dn": "/CN=dev.intellichoice.co",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "e5589b624340afca37d84a20347034909a15998d5896ea9a351bb797e301b3e2",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "MHhkMjJkY2M1N2RhNmMxMmIyZjIzZDk4OTAwMzllZGM3NGI0MTc3NTViOWI0ODk0NzhkOTg4NTBiMTYyZGI5YzEyNzVkOWJjY2UyNDYwNDIzNDFmYzYzYWU3NjQ5NjkxMGEzOTk3OWJhOTZlNjEwYTM1YmQ0YjVjZGUwNjcxZDIwZDhhYzZiZjliNTJlYjI2MGRiOWNiYjE3NjE4NjExM2U2MjIxNTMyMzhhNjFlMDAyYTc3OTg3NmNmMzE5N2I1ZTdjMDY1ZTBkZjA0ZmQ4NTA5ODNhMDJmYTc4MjU0ZjMyY2I3OWFiNTM5OGIyNjdiOGEwYjg2NGIxMGI3NTgwOGVhNGZkNjU1MTQ2NmE5NTRmOGNkZDBiY2NlM2EwNWI1ZmY0ZTYzYmZhZGU2MmUzOGFjOGViOWVmYTg2MTgyOGUwZTBhZGJiZWVjZDAxN2NhZWIyMDIyMDBmNjFjYmZkMjAwYWVhYjVhMWEyZjc2NjJiNTNlNWJlM2Y5NzNmNmU0ODVkNjJjZjNiZDY1ZTJjYThkNjgwNWEzNzEwMzhkZTllNjBlOWM5ODg0MWJjZGMwZmQ0MzI2MTYwZDY3NDI1OGUzNjllNTQxNGI1MjBkNWJmMmFlOGZkMWVhOTQwMDdmNjUzMzIzZGRhNzFiMWJjMTdlYTliZGNhMmQwMjNjYTY0OQ=="
}
},
"tbs_fingerprint": "e0ab2a8c93be393cd5faab819d50140188759cf695e5b2ef4eefa103fe9bd24e",
"tbs_noct_fingerprint": "915544e087af9525e223b3f7ff325d6e206d7127e5527f8ae3240a2818108fe1",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2025-07-31T18:42:37",
"not_before": "2025-05-02T18:42:38"
},
"version": 2
},
"fingerprint_sha256": "52AA6829227E190F7ED83A258575C33BE8439FB75C1769C8E90B0FEBE407C6A3",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "https://182.160.154.152/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-29T23:04:08.687Z"
},
{
"port": 465,
"protocol": "tcp",
"name": "smtp",
"version": "4.98.1",
"product": "Exim smtpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:exim:exim:4.98.1",
"part": "a",
"vendor": "exim",
"product": "exim",
"version": "4\\.98\\.1",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-07-02T01:55:50.371Z"
},
{
"port": 587,
"protocol": "tcp",
"name": "smtp",
"version": "4.98.1",
"product": "Exim smtpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:exim:exim:4.98.1",
"part": "a",
"vendor": "exim",
"product": "exim",
"version": "4\\.98\\.1",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smtp": {
"banner": "220-devd.intellichoice.com.au ESMTP Exim 4.98.1 #2 Thu, 03 Jul 2025 17:33:32 +1000 \r\n220-We do not authorize the use of this system to transport unsolicited, \r\n220 and/or bulk e-mail.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_key_id": "keyid582610948323e250a6cb22f221723d7c098fe5d5\ndirname/[email protected]/cn=devd.intellichoice.com.au\nserial015e905973",
"basic_constraints": {
"is_ca": true
},
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"subject_alt_name": {
"dns_names": [
"devd.intellichoice.com.au"
]
},
"subject_key_id": "582610948323e250a6cb22f221723d7c098fe5d5"
},
"fingerprint_md5": "98C86F553BD67DD4C11EF3393F4ECB75",
"fingerprint_sha1": "DC7D99AEA2BC6DD549A8A7C5C83198772DB46522",
"fingerprint_sha256": "3C665639BFC881AFB29C120F421E8FAC498E192FBD9D59F431EECF41D56E0821",
"issuer": {
"common_name": [
"devd.intellichoice.com.au"
],
"email_address": [
"[email protected]"
]
},
"issuer_dn": "/[email protected]/CN=devd.intellichoice.com.au",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "5881485683",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "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"
},
"subject": {
"common_name": [
"devd.intellichoice.com.au"
],
"email_address": [
"[email protected]"
]
},
"subject_alt_name": {
"dns_names": [
"devd.intellichoice.com.au"
],
"extended_dns_names": [
{
"domain": "intellichoice",
"fld": "intellichoice.com.au",
"subdomain": "devd",
"tld": "com.au"
}
]
},
"subject_dn": "/[email protected]/CN=devd.intellichoice.com.au",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "a567593d514e36813a4fe343203a3eefa9dfb6db15c80e33543ec841f3c66c9d",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "22aff274c25b89d95f0846962f736285b100e93b750d10ff6e994b1e48e946ea",
"validation_level": "OV",
"validity": {
"length_seconds": 31536000,
"not_after": "2024-12-18T00:42:45",
"not_before": "2023-12-19T00:42:45"
},
"version": 2
},
"fingerprint_sha256": "3C665639BFC881AFB29C120F421E8FAC498E192FBD9D59F431EECF41D56E0821",
"precert": false,
"raw": "MIIEFjCCAv6gAwIBAgIFAV6QWXMwDQYJKoZIhvcNAQELBQAwUjEsMCoGCSqGSIb3DQEJARYdc3NsQGRldmQuaW50ZWxsaWNob2ljZS5jb20uYXUxIjAgBgNVBAMMGWRldmQuaW50ZWxsaWNob2ljZS5jb20uYXUwHhcNMjMxMjE5MDA0MjQ1WhcNMjQxMjE4MDA0MjQ1WjBSMSwwKgYJKoZIhvcNAQkBFh1zc2xAZGV2ZC5pbnRlbGxpY2hvaWNlLmNvbS5hdTEiMCAGA1UEAwwZZGV2ZC5pbnRlbGxpY2hvaWNlLmNvbS5hdTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAK+8M7/OQl6P59DgfO9iFdyT6BS9Rz85VA8lR5zqXul0NMVpPMJfwsuMyeEKz2iK1WxyjjIzVeaKCeA+pbAi2etQoKaUsnDmqDqLWYxXAWqzR/aIc959N+3ztlLTW2iKnOyEuiXzzLsYRlK3NIaJ7xMcSok2EG1SovNSIr8qJuVF17Ive1QBbnbYGQO3ZYCiOoY9xro0ym3mZLyDE+V6G1nqnbMeE5vd4qY5V0PY6pPVJkp2XU0/slBoV+DyTjePMohTeVLlqNSSW4VLYKr6SKbDK9EKwLc7TK3Ie2ILO7R/yU3uJ8PsAx8hHPUDb2RdEoARPs57t9rNo6eCrOEAWjsCAwEAAaOB8jCB7zAdBgNVHQ4EFgQUWCYQlIMj4lCmyyLyIXI9fAmP5dUwCQYDVR0TBAIwADB+BgNVHSMEdzB1gBRYJhCUgyPiUKbLIvIhcj18CY/l1aFWpFQwUjEsMCoGCSqGSIb3DQEJARYdc3NsQGRldmQuaW50ZWxsaWNob2ljZS5jb20uYXUxIjAgBgNVBAMMGWRldmQuaW50ZWxsaWNob2ljZS5jb20uYXWCBQFekFlzMB0GA1UdJQQWMBQGCCsGAQUFBwMBBggrBgEFBQcDAjAkBgNVHREEHTAbghlkZXZkLmludGVsbGljaG9pY2UuY29tLmF1MA0GCSqGSIb3DQEBCwUAA4IBAQAfXCDQEA1pvRs0UGrmD/LZ94nQLrGB1FJCRx+A2JI3xCVhd9aFVvye5T1zPpWpG+IcGNWRdDmybC8mRKYvY929ejGG/RrCS9gtd/gNmtSKxxr1R4yifGID0ReVbi97qDIvJEkEfmILtL+qJGyomcB/rIED/qKQ7mEpPsuijGciEAbySmHfptzpbVGDlalHebfdcmWnw2vjrYTwiKTHlV4SJhI9YeLDUdk7tmBTNFyFf9wIBk+k7AVFU+0rUDqu5dwCjhrFeYMHDfqnymMJBI2bLdVbjUDkL48fR4tDAVGO4fj25/lNpyyOViML53TRPKn+q8hDTtMalGzEJ+J5z3mV",
"tags": [
"ov",
"trusted",
"self_signed",
"root"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-07-03T07:34:08.34Z"
},
{
"port": 993,
"protocol": "tcp",
"name": "imap",
"version": "",
"product": "Dovecot imapd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-07-02T07:16:13.138Z"
},
{
"port": 995,
"protocol": "tcp",
"name": "pop3",
"version": "",
"product": "Dovecot pop3d",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-06-29T23:57:41.492Z"
}
],
"services_hash": "e0079ee38f71b37760ba1cd952eb2d20c6295111148f447f85e6d044445f5b3a",
"last_updated_at": "2025-07-03T07:34:08.34Z",
"banner": [
"ftp",
"tls",
"http",
"pop3",
"smtp",
"ssh",
"imap"
],
"is_vuln": true,
"cveDetails": {
"CVE-1999-0070": {
"id": "CVE-1999-0070",
"references": [
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E"
],
"score": 5,
"services": [
"80/http"
],
"severity": "medium",
"summary": "test-cgi program allows an attacker to list files on the server.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-1999-1199": {
"id": "CVE-1999-1199",
"references": [
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E",
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
],
"score": 10,
"services": [
"80/http"
],
"severity": "high",
"summary": "Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the \"sioux\" vulnerability.",
"vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "NVD-CWE-Other"
},
"CVE-2007-2768": {
"id": "CVE-2007-2768",
"references": [
"http://archives.neohapsis.com/archives/fulldisclosure/2007-04/0635.html",
"http://www.osvdb.org/34601",
"https://security.netapp.com/advisory/ntap-20191107-0002/",
"http://archives.neohapsis.com/archives/fulldisclosure/2007-04/0635.html",
"http://www.osvdb.org/34601",
"https://security.netapp.com/advisory/ntap-20191107-0002/"
],
"score": 4.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.",
"vector_string": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"weakness": "CWE-200"
},
"CVE-2008-3844": {
"id": "CVE-2008-3844",
"references": [
"http://secunia.com/advisories/31575",
"http://secunia.com/advisories/32241",
"http://securitytracker.com/id?1020730",
"http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm",
"http://www.redhat.com/security/data/openssh-blacklist.html",
"http://www.redhat.com/support/errata/RHSA-2008-0855.html",
"http://www.securityfocus.com/bid/30794",
"http://www.vupen.com/english/advisories/2008/2821",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/44747",
"http://secunia.com/advisories/31575",
"http://secunia.com/advisories/32241",
"http://securitytracker.com/id?1020730",
"http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm",
"http://www.redhat.com/security/data/openssh-blacklist.html",
"http://www.redhat.com/support/errata/RHSA-2008-0855.html",
"http://www.securityfocus.com/bid/30794",
"http://www.vupen.com/english/advisories/2008/2821",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/44747"
],
"score": 9.3,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.",
"vector_string": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"weakness": "CWE-20"
},
"CVE-2016-20012": {
"id": "CVE-2016-20012",
"references": [
"https://github.com/openssh/openssh-portable/blob/d0fffc88c8fe90c1815c6f4097bc8cbcabc0f3dd/auth2-pubkey.c#L261-L265",
"https://github.com/openssh/openssh-portable/pull/270",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-920577097",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-943909185",
"https://rushter.com/blog/public-ssh-keys/",
"https://security.netapp.com/advisory/ntap-20211014-0005/",
"https://utcc.utoronto.ca/~cks/space/blog/tech/SSHKeysAreInfoLeak",
"https://www.openwall.com/lists/oss-security/2018/08/24/1",
"https://github.com/openssh/openssh-portable/blob/d0fffc88c8fe90c1815c6f4097bc8cbcabc0f3dd/auth2-pubkey.c#L261-L265",
"https://github.com/openssh/openssh-portable/pull/270",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-920577097",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-943909185",
"https://rushter.com/blog/public-ssh-keys/",
"https://security.netapp.com/advisory/ntap-20211014-0005/",
"https://utcc.utoronto.ca/~cks/space/blog/tech/SSHKeysAreInfoLeak",
"https://www.openwall.com/lists/oss-security/2018/08/24/1"
],
"score": 5.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"weakness": "NVD-CWE-Other"
},
"CVE-2017-15906": {
"id": "CVE-2017-15906",
"references": [
"http://www.securityfocus.com/bid/101552",
"https://access.redhat.com/errata/RHSA-2018:0980",
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://github.com/openbsd/src/commit/a6981567e8e215acc1ef690c8dbb30f2d9b00a19",
"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html",
"https://security.gentoo.org/glsa/201801-05",
"https://security.netapp.com/advisory/ntap-20180423-0004/",
"https://www.openssh.com/txt/release-7.6",
"https://www.oracle.com/security-alerts/cpujan2020.html",
"http://www.securityfocus.com/bid/101552",
"https://access.redhat.com/errata/RHSA-2018:0980",
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://github.com/openbsd/src/commit/a6981567e8e215acc1ef690c8dbb30f2d9b00a19",
"https://lists.debian.org/debian-lts-announce/2018/09/msg00010.html",
"https://security.gentoo.org/glsa/201801-05",
"https://security.netapp.com/advisory/ntap-20180423-0004/",
"https://www.openssh.com/txt/release-7.6",
"https://www.oracle.com/security-alerts/cpujan2020.html"
],
"score": 5.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:L/A:N",
"weakness": "CWE-732"
},
"CVE-2018-15473": {
"id": "CVE-2018-15473",
"references": [
"http://www.openwall.com/lists/oss-security/2018/08/15/5",
"http://www.securityfocus.com/bid/105140",
"http://www.securitytracker.com/id/1041487",
"https://access.redhat.com/errata/RHSA-2019:0711",
"https://access.redhat.com/errata/RHSA-2019:2143",
"https://bugs.debian.org/906236",
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://github.com/openbsd/src/commit/779974d35b4859c07bc3cb8a12c74b43b0a7d1e0",
"https://lists.debian.org/debian-lts-announce/2018/08/msg00022.html",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0011",
"https://security.gentoo.org/glsa/201810-03",
"https://security.netapp.com/advisory/ntap-20181101-0001/",
"https://usn.ubuntu.com/3809-1/",
"https://www.debian.org/security/2018/dsa-4280",
"https://www.exploit-db.com/exploits/45210/",
"https://www.exploit-db.com/exploits/45233/",
"https://www.exploit-db.com/exploits/45939/",
"https://www.oracle.com/security-alerts/cpujan2020.html",
"http://www.openwall.com/lists/oss-security/2018/08/15/5",
"http://www.securityfocus.com/bid/105140",
"http://www.securitytracker.com/id/1041487",
"https://access.redhat.com/errata/RHSA-2019:0711",
"https://access.redhat.com/errata/RHSA-2019:2143",
"https://bugs.debian.org/906236",
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://github.com/openbsd/src/commit/779974d35b4859c07bc3cb8a12c74b43b0a7d1e0",
"https://lists.debian.org/debian-lts-announce/2018/08/msg00022.html",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2018-0011",
"https://security.gentoo.org/glsa/201810-03",
"https://security.netapp.com/advisory/ntap-20181101-0001/",
"https://usn.ubuntu.com/3809-1/",
"https://www.debian.org/security/2018/dsa-4280",
"https://www.exploit-db.com/exploits/45210/",
"https://www.exploit-db.com/exploits/45233/",
"https://www.exploit-db.com/exploits/45939/",
"https://www.oracle.com/security-alerts/cpujan2020.html"
],
"score": 5.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after the packet containing the request has been fully parsed, related to auth2-gss.c, auth2-hostbased.c, and auth2-pubkey.c.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"weakness": "CWE-362"
},
"CVE-2018-15919": {
"id": "CVE-2018-15919",
"references": [
"http://seclists.org/oss-sec/2018/q3/180",
"http://www.securityfocus.com/bid/105163",
"https://security.netapp.com/advisory/ntap-20181221-0001/",
"http://seclists.org/oss-sec/2018/q3/180",
"http://www.securityfocus.com/bid/105163",
"https://security.netapp.com/advisory/ntap-20181221-0001/"
],
"score": 5.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a target system when GSS2 is in use. NOTE: the discoverer states 'We understand that the OpenSSH developers do not want to treat such a username enumeration (or \"oracle\") as a vulnerability.'",
"vector_string": "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"weakness": "CWE-200"
},
"CVE-2018-20685": {
"id": "CVE-2018-20685",
"references": [
"http://www.securityfocus.com/bid/106531",
"https://access.redhat.com/errata/RHSA-2019:3702",
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/scp.c.diff?r1=1.197&r2=1.198&f=h",
"https://github.com/openssh/openssh-portable/commit/6010c0303a422a9c5fa8860c061bf7105eb7f8b2",
"https://lists.debian.org/debian-lts-announce/2019/03/msg00030.html",
"https://security.gentoo.org/glsa/201903-16",
"https://security.gentoo.org/glsa/202007-53",
"https://security.netapp.com/advisory/ntap-20190215-0001/",
"https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt",
"https://usn.ubuntu.com/3885-1/",
"https://www.debian.org/security/2019/dsa-4387",
"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html",
"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"http://www.securityfocus.com/bid/106531",
"https://access.redhat.com/errata/RHSA-2019:3702",
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/scp.c.diff?r1=1.197&r2=1.198&f=h",
"https://github.com/openssh/openssh-portable/commit/6010c0303a422a9c5fa8860c061bf7105eb7f8b2",
"https://lists.debian.org/debian-lts-announce/2019/03/msg00030.html",
"https://security.gentoo.org/glsa/201903-16",
"https://security.gentoo.org/glsa/202007-53",
"https://security.netapp.com/advisory/ntap-20190215-0001/",
"https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt",
"https://usn.ubuntu.com/3885-1/",
"https://www.debian.org/security/2019/dsa-4387",
"https://www.oracle.com/technetwork/security-advisory/cpuapr2019-5072813.html",
"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
],
"score": 5.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:N/I:H/A:N",
"weakness": "CWE-863"
},
"CVE-2019-6109": {
"id": "CVE-2019-6109",
"references": [
"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00058.html",
"https://access.redhat.com/errata/RHSA-2019:3702",
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://cvsweb.openbsd.org/src/usr.bin/ssh/progressmeter.c",
"https://cvsweb.openbsd.org/src/usr.bin/ssh/scp.c",
"https://lists.debian.org/debian-lts-announce/2019/03/msg00030.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W3YVQ2BPTOVDCFDVNC2GGF5P5ISFG37G/",
"https://security.gentoo.org/glsa/201903-16",
"https://security.netapp.com/advisory/ntap-20190213-0001/",
"https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt",
"https://usn.ubuntu.com/3885-1/",
"https://www.debian.org/security/2019/dsa-4387",
"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00058.html",
"https://access.redhat.com/errata/RHSA-2019:3702",
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://cvsweb.openbsd.org/src/usr.bin/ssh/progressmeter.c",
"https://cvsweb.openbsd.org/src/usr.bin/ssh/scp.c",
"https://lists.debian.org/debian-lts-announce/2019/03/msg00030.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W3YVQ2BPTOVDCFDVNC2GGF5P5ISFG37G/",
"https://security.gentoo.org/glsa/201903-16",
"https://security.netapp.com/advisory/ntap-20190213-0001/",
"https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt",
"https://usn.ubuntu.com/3885-1/",
"https://www.debian.org/security/2019/dsa-4387",
"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
],
"score": 6.8,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
"weakness": "CWE-116"
},
"CVE-2019-6110": {
"id": "CVE-2019-6110",
"references": [
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://cvsweb.openbsd.org/src/usr.bin/ssh/progressmeter.c",
"https://cvsweb.openbsd.org/src/usr.bin/ssh/scp.c",
"https://security.gentoo.org/glsa/201903-16",
"https://security.netapp.com/advisory/ntap-20190213-0001/",
"https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt",
"https://www.exploit-db.com/exploits/46193/",
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://cvsweb.openbsd.org/src/usr.bin/ssh/progressmeter.c",
"https://cvsweb.openbsd.org/src/usr.bin/ssh/scp.c",
"https://security.gentoo.org/glsa/201903-16",
"https://security.netapp.com/advisory/ntap-20190213-0001/",
"https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt",
"https://www.exploit-db.com/exploits/46193/"
],
"score": 6.8,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N",
"weakness": "CWE-838"
},
"CVE-2019-6111": {
"id": "CVE-2019-6111",
"references": [
"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00058.html",
"http://www.openwall.com/lists/oss-security/2019/04/18/1",
"http://www.openwall.com/lists/oss-security/2022/08/02/1",
"http://www.securityfocus.com/bid/106741",
"https://access.redhat.com/errata/RHSA-2019:3702",
"https://bugzilla.redhat.com/show_bug.cgi?id=1677794",
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://cvsweb.openbsd.org/src/usr.bin/ssh/scp.c",
"https://lists.apache.org/thread.html/c45d9bc90700354b58fb7455962873c44229841880dcb64842fa7d23%40%3Cdev.mina.apache.org%3E",
"https://lists.apache.org/thread.html/c7301cab36a86825359e1b725fc40304d1df56dc6d107c1fe885148b%40%3Cdev.mina.apache.org%3E",
"https://lists.apache.org/thread.html/d540139359de999b0f1c87d05b715be4d7d4bec771e1ae55153c5c7a%40%3Cdev.mina.apache.org%3E",
"https://lists.apache.org/thread.html/e47597433b351d6e01a5d68d610b4ba195743def9730e49561e8cf3f%40%3Cdev.mina.apache.org%3E",
"https://lists.debian.org/debian-lts-announce/2019/03/msg00030.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W3YVQ2BPTOVDCFDVNC2GGF5P5ISFG37G/",
"https://security.gentoo.org/glsa/201903-16",
"https://security.netapp.com/advisory/ntap-20190213-0001/",
"https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt",
"https://usn.ubuntu.com/3885-1/",
"https://usn.ubuntu.com/3885-2/",
"https://www.debian.org/security/2019/dsa-4387",
"https://www.exploit-db.com/exploits/46193/",
"https://www.freebsd.org/security/advisories/FreeBSD-EN-19:10.scp.asc",
"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html",
"http://lists.opensuse.org/opensuse-security-announce/2019-06/msg00058.html",
"http://www.openwall.com/lists/oss-security/2019/04/18/1",
"http://www.openwall.com/lists/oss-security/2022/08/02/1",
"http://www.securityfocus.com/bid/106741",
"https://access.redhat.com/errata/RHSA-2019:3702",
"https://bugzilla.redhat.com/show_bug.cgi?id=1677794",
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://cvsweb.openbsd.org/src/usr.bin/ssh/scp.c",
"https://lists.apache.org/thread.html/c45d9bc90700354b58fb7455962873c44229841880dcb64842fa7d23%40%3Cdev.mina.apache.org%3E",
"https://lists.apache.org/thread.html/c7301cab36a86825359e1b725fc40304d1df56dc6d107c1fe885148b%40%3Cdev.mina.apache.org%3E",
"https://lists.apache.org/thread.html/d540139359de999b0f1c87d05b715be4d7d4bec771e1ae55153c5c7a%40%3Cdev.mina.apache.org%3E",
"https://lists.apache.org/thread.html/e47597433b351d6e01a5d68d610b4ba195743def9730e49561e8cf3f%40%3Cdev.mina.apache.org%3E",
"https://lists.debian.org/debian-lts-announce/2019/03/msg00030.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W3YVQ2BPTOVDCFDVNC2GGF5P5ISFG37G/",
"https://security.gentoo.org/glsa/201903-16",
"https://security.netapp.com/advisory/ntap-20190213-0001/",
"https://sintonen.fi/advisories/scp-client-multiple-vulnerabilities.txt",
"https://usn.ubuntu.com/3885-1/",
"https://usn.ubuntu.com/3885-2/",
"https://www.debian.org/security/2019/dsa-4387",
"https://www.exploit-db.com/exploits/46193/",
"https://www.freebsd.org/security/advisories/FreeBSD-EN-19:10.scp.asc",
"https://www.oracle.com/technetwork/security-advisory/cpuoct2019-5072832.html"
],
"score": 5.9,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-22"
},
"CVE-2020-14145": {
"id": "CVE-2020-14145",
"references": [
"http://www.openwall.com/lists/oss-security/2020/12/02/1",
"https://anongit.mindrot.org/openssh.git/commit/?id=b3855ff053f5078ec3d3c653cdaedefaa5fc362d",
"https://docs.ssh-mitm.at/CVE-2020-14145.html",
"https://github.com/openssh/openssh-portable/compare/V_8_3_P1...V_8_4_P1",
"https://github.com/ssh-mitm/ssh-mitm/blob/master/ssh_proxy_server/plugins/session/cve202014145.py",
"https://security.gentoo.org/glsa/202105-35",
"https://security.netapp.com/advisory/ntap-20200709-0004/",
"https://www.fzi.de/en/news/news/detail-en/artikel/fsa-2020-2-ausnutzung-eines-informationslecks-fuer-gezielte-mitm-angriffe-auf-ssh-clients/",
"http://www.openwall.com/lists/oss-security/2020/12/02/1",
"https://anongit.mindrot.org/openssh.git/commit/?id=b3855ff053f5078ec3d3c653cdaedefaa5fc362d",
"https://docs.ssh-mitm.at/CVE-2020-14145.html",
"https://github.com/openssh/openssh-portable/compare/V_8_3_P1...V_8_4_P1",
"https://github.com/ssh-mitm/ssh-mitm/blob/master/ssh_proxy_server/plugins/session/cve202014145.py",
"https://security.gentoo.org/glsa/202105-35",
"https://security.netapp.com/advisory/ntap-20200709-0004/",
"https://www.fzi.de/en/news/news/detail-en/artikel/fsa-2020-2-ausnutzung-eines-informationslecks-fuer-gezielte-mitm-angriffe-auf-ssh-clients/"
],
"score": 5.9,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"weakness": "CWE-203"
},
"CVE-2020-15778": {
"id": "CVE-2020-15778",
"references": [
"https://access.redhat.com/errata/RHSA-2024:3166",
"https://github.com/cpandya2909/CVE-2020-15778/",
"https://news.ycombinator.com/item?id=25005567",
"https://security.gentoo.org/glsa/202212-06",
"https://security.netapp.com/advisory/ntap-20200731-0007/",
"https://www.openssh.com/security.html",
"https://access.redhat.com/errata/RHSA-2024:3166",
"https://github.com/cpandya2909/CVE-2020-15778/",
"https://news.ycombinator.com/item?id=25005567",
"https://security.gentoo.org/glsa/202212-06",
"https://security.netapp.com/advisory/ntap-20200731-0007/",
"https://www.openssh.com/security.html"
],
"score": 7.8,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of \"anomalous argument transfers\" because that could \"stand a great chance of breaking existing workflows.\"",
"vector_string": "CVSS:3.1/AV:L/AC:L/PR:N/UI:R/S:U/C:H/I:H/A:H",
"weakness": "CWE-78"
},
"CVE-2021-36368": {
"id": "CVE-2021-36368",
"references": [
"https://bugzilla.mindrot.org/show_bug.cgi?id=3316",
"https://docs.ssh-mitm.at/trivialauth.html",
"https://github.com/openssh/openssh-portable/pull/258",
"https://security-tracker.debian.org/tracker/CVE-2021-36368",
"https://www.openssh.com/security.html",
"https://bugzilla.mindrot.org/show_bug.cgi?id=3316",
"https://docs.ssh-mitm.at/trivialauth.html",
"https://github.com/openssh/openssh-portable/pull/258",
"https://security-tracker.debian.org/tracker/CVE-2021-36368",
"https://www.openssh.com/security.html"
],
"score": 3.7,
"services": [
"22/ssh"
],
"severity": "low",
"summary": "An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is \"this is not an authentication bypass, since nothing is being bypassed.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"weakness": "CWE-287"
},
"CVE-2021-41617": {
"id": "CVE-2021-41617",
"references": [
"https://bugzilla.suse.com/show_bug.cgi?id=1190975",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XJIONMHMKZDTMH6BQR5TNLF2WDCGWED/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KVI7RWM2JLNMWTOFK6BDUSGNOIPZYPUT/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W44V2PFQH5YLRN6ZJTVRKAD7CU6CYYET/",
"https://security.netapp.com/advisory/ntap-20211014-0004/",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-8.8",
"https://www.openwall.com/lists/oss-security/2021/09/26/1",
"https://www.oracle.com/security-alerts/cpuapr2022.html",
"https://www.oracle.com/security-alerts/cpujul2022.html",
"https://www.starwindsoftware.com/security/sw-20220805-0001/",
"https://www.tenable.com/plugins/nessus/154174",
"https://bugzilla.suse.com/show_bug.cgi?id=1190975",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XJIONMHMKZDTMH6BQR5TNLF2WDCGWED/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KVI7RWM2JLNMWTOFK6BDUSGNOIPZYPUT/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W44V2PFQH5YLRN6ZJTVRKAD7CU6CYYET/",
"https://security.netapp.com/advisory/ntap-20211014-0004/",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-8.8",
"https://www.openwall.com/lists/oss-security/2021/09/26/1",
"https://www.oracle.com/security-alerts/cpuapr2022.html",
"https://www.oracle.com/security-alerts/cpujul2022.html",
"https://www.starwindsoftware.com/security/sw-20220805-0001/",
"https://www.tenable.com/plugins/nessus/154174"
],
"score": 7,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.",
"vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "NVD-CWE-Other"
},
"CVE-2023-25690": {
"id": "CVE-2023-25690",
"references": [
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01",
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 9.8,
"services": [
"80/http"
],
"severity": "critical",
"summary": "Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack.\n\n\n\n\nConfigurations are affected when mod_proxy is enabled along with some form of RewriteRule\n or ProxyPassMatch in which a non-specific pattern matches\n some portion of the user-supplied request-target (URL) data and is then\n re-inserted into the proxied request-target using variable \nsubstitution. For example, something like:\n\n\n\n\nRewriteEngine on\nRewriteRule \"^/here/(.*)\" \"http://example.com:8080/elsewhere?$1\"; [P]\nProxyPassReverse /here/ http://example.com:8080/\n\n\nRequest splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-444"
},
"CVE-2023-27522": {
"id": "CVE-2023-27522",
"references": [
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 7.5,
"services": [
"80/http"
],
"severity": "high",
"summary": "HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55.nnSpecial characters in the origin response header can truncate/split the response forwarded to the client.nnn",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-444"
},
"CVE-2023-38408": {
"id": "CVE-2023-38408",
"references": [
"http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html",
"http://www.openwall.com/lists/oss-security/2023/07/20/1",
"http://www.openwall.com/lists/oss-security/2023/07/20/2",
"http://www.openwall.com/lists/oss-security/2023/09/22/11",
"http://www.openwall.com/lists/oss-security/2023/09/22/9",
"https://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent",
"https://github.com/openbsd/src/commit/7bc29a9d5cd697290aa056e94ecee6253d3425f8",
"https://github.com/openbsd/src/commit/f03a4faa55c4ce0818324701dadbf91988d7351d",
"https://github.com/openbsd/src/commit/f8f5a6b003981bb824329dc987d101977beda7ca",
"https://lists.debian.org/debian-lts-announce/2023/08/msg00021.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CEBTJJINE2I3FHAUKKNQWMFGYMLSMWKQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RAXVQS6ZYTULFAK3TEJHRLKZALJS3AOU/",
"https://news.ycombinator.com/item?id=36790196",
"https://security.gentoo.org/glsa/202307-01",
"https://security.netapp.com/advisory/ntap-20230803-0010/",
"https://support.apple.com/kb/HT213940",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-9.3p2",
"https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt",
"https://www.vicarius.io/vsociety/posts/exploring-opensshs-agent-forwarding-rce-cve-2023-38408",
"http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html",
"http://www.openwall.com/lists/oss-security/2023/07/20/1",
"http://www.openwall.com/lists/oss-security/2023/07/20/2",
"http://www.openwall.com/lists/oss-security/2023/09/22/11",
"http://www.openwall.com/lists/oss-security/2023/09/22/9",
"https://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent",
"https://github.com/openbsd/src/commit/7bc29a9d5cd697290aa056e94ecee6253d3425f8",
"https://github.com/openbsd/src/commit/f03a4faa55c4ce0818324701dadbf91988d7351d",
"https://github.com/openbsd/src/commit/f8f5a6b003981bb824329dc987d101977beda7ca",
"https://lists.debian.org/debian-lts-announce/2023/08/msg00021.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CEBTJJINE2I3FHAUKKNQWMFGYMLSMWKQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RAXVQS6ZYTULFAK3TEJHRLKZALJS3AOU/",
"https://news.ycombinator.com/item?id=36790196",
"https://security.gentoo.org/glsa/202307-01",
"https://security.netapp.com/advisory/ntap-20230803-0010/",
"https://support.apple.com/kb/HT213940",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-9.3p2",
"https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt",
"https://www.vicarius.io/vsociety/posts/exploring-opensshs-agent-forwarding-rce-cve-2023-38408"
],
"score": 9.8,
"services": [
"22/ssh"
],
"severity": "critical",
"summary": "The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-428"
},
"CVE-2023-48795": {
"id": "CVE-2023-48795",
"references": [
"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/18/3",
"http://www.openwall.com/lists/oss-security/2023/12/19/5",
"http://www.openwall.com/lists/oss-security/2023/12/20/3",
"http://www.openwall.com/lists/oss-security/2024/03/06/3",
"http://www.openwall.com/lists/oss-security/2024/04/17/8",
"https://access.redhat.com/security/cve/cve-2023-48795",
"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
"https://bugs.gentoo.org/920280",
"https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
"https://bugzilla.suse.com/show_bug.cgi?id=1217950",
"https://crates.io/crates/thrussh/versions",
"https://filezilla-project.org/versions.php",
"https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
"https://github.com/NixOS/nixpkgs/pull/275249",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
"https://github.com/advisories/GHSA-45x7-px36-x8w8",
"https://github.com/apache/mina-sshd/issues/445",
"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
"https://github.com/cyd01/KiTTY/issues/520",
"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
"https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
"https://github.com/hierynomus/sshj/issues/916",
"https://github.com/janmojzis/tinyssh/issues/81",
"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
"https://github.com/libssh2/libssh2/pull/1291",
"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
"https://github.com/mwiede/jsch/issues/457",
"https://github.com/mwiede/jsch/pull/461",
"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
"https://github.com/openssh/openssh-portable/commits/master",
"https://github.com/paramiko/paramiko/issues/2337",
"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/456",
"https://github.com/rapier1/hpn-ssh/releases",
"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
"https://github.com/ronf/asyncssh/tags",
"https://github.com/ssh-mitm/ssh-mitm/issues/165",
"https://github.com/warp-tech/russh/releases/tag/v0.40.2",
"https://gitlab.com/libssh/libssh-mirror/-/tags",
"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
"https://help.panic.com/releasenotes/transmit5/",
"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
"https://matt.ucc.asn.au/dropbear/CHANGES",
"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
"https://news.ycombinator.com/item?id=38684904",
"https://news.ycombinator.com/item?id=38685286",
"https://news.ycombinator.com/item?id=38732005",
"https://nova.app/releases/#v11.8",
"https://oryx-embedded.com/download/#changelog",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
"https://roumenpetrov.info/secsh/#news20231220",
"https://security-tracker.debian.org/tracker/CVE-2023-48795",
"https://security-tracker.debian.org/tracker/source-package/libssh2",
"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
"https://security.gentoo.org/glsa/202312-16",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0004/",
"https://support.apple.com/kb/HT214084",
"https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
"https://twitter.com/TrueSkrillor/status/1736774389725565005",
"https://ubuntu.com/security/CVE-2023-48795",
"https://winscp.net/eng/docs/history#6.2.2",
"https://www.bitvise.com/ssh-client-version-history#933",
"https://www.bitvise.com/ssh-server-version-history",
"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.debian.org/security/2023/dsa-5588",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
"https://www.netsarang.com/en/xshell-update-history/",
"https://www.openssh.com/openbsd.html",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"https://www.openwall.com/lists/oss-security/2023/12/20/3",
"https://www.paramiko.org/changelog.html",
"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
"https://www.terrapin-attack.com",
"https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
"https://www.vandyke.com/products/securecrt/history.txt",
"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/18/3",
"http://www.openwall.com/lists/oss-security/2023/12/19/5",
"http://www.openwall.com/lists/oss-security/2023/12/20/3",
"http://www.openwall.com/lists/oss-security/2024/03/06/3",
"http://www.openwall.com/lists/oss-security/2024/04/17/8",
"https://access.redhat.com/security/cve/cve-2023-48795",
"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
"https://bugs.gentoo.org/920280",
"https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
"https://bugzilla.suse.com/show_bug.cgi?id=1217950",
"https://crates.io/crates/thrussh/versions",
"https://filezilla-project.org/versions.php",
"https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
"https://github.com/NixOS/nixpkgs/pull/275249",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
"https://github.com/advisories/GHSA-45x7-px36-x8w8",
"https://github.com/apache/mina-sshd/issues/445",
"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
"https://github.com/cyd01/KiTTY/issues/520",
"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
"https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
"https://github.com/hierynomus/sshj/issues/916",
"https://github.com/janmojzis/tinyssh/issues/81",
"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
"https://github.com/libssh2/libssh2/pull/1291",
"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
"https://github.com/mwiede/jsch/issues/457",
"https://github.com/mwiede/jsch/pull/461",
"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
"https://github.com/openssh/openssh-portable/commits/master",
"https://github.com/paramiko/paramiko/issues/2337",
"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/456",
"https://github.com/rapier1/hpn-ssh/releases",
"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
"https://github.com/ronf/asyncssh/tags",
"https://github.com/ssh-mitm/ssh-mitm/issues/165",
"https://github.com/warp-tech/russh/releases/tag/v0.40.2",
"https://gitlab.com/libssh/libssh-mirror/-/tags",
"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
"https://help.panic.com/releasenotes/transmit5/",
"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
"https://matt.ucc.asn.au/dropbear/CHANGES",
"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
"https://news.ycombinator.com/item?id=38684904",
"https://news.ycombinator.com/item?id=38685286",
"https://news.ycombinator.com/item?id=38732005",
"https://nova.app/releases/#v11.8",
"https://oryx-embedded.com/download/#changelog",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
"https://roumenpetrov.info/secsh/#news20231220",
"https://security-tracker.debian.org/tracker/CVE-2023-48795",
"https://security-tracker.debian.org/tracker/source-package/libssh2",
"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
"https://security.gentoo.org/glsa/202312-16",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0004/",
"https://support.apple.com/kb/HT214084",
"https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
"https://twitter.com/TrueSkrillor/status/1736774389725565005",
"https://ubuntu.com/security/CVE-2023-48795",
"https://winscp.net/eng/docs/history#6.2.2",
"https://www.bitvise.com/ssh-client-version-history#933",
"https://www.bitvise.com/ssh-server-version-history",
"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.debian.org/security/2023/dsa-5588",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
"https://www.netsarang.com/en/xshell-update-history/",
"https://www.openssh.com/openbsd.html",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"https://www.openwall.com/lists/oss-security/2023/12/20/3",
"https://www.paramiko.org/changelog.html",
"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
"https://www.terrapin-attack.com",
"https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
"https://www.vandyke.com/products/securecrt/history.txt",
"https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit",
"https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability"
],
"score": 5.9,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in [email protected] and (if CBC is used) the [email protected] MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-354"
},
"CVE-2023-51384": {
"id": "CVE-2023-51384",
"references": [
"http://seclists.org/fulldisclosure/2024/Mar/21",
"https://github.com/openssh/openssh-portable/commit/881d9c6af9da4257c69c327c4e2f1508b2fa754b",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"https://github.com/openssh/openssh-portable/commit/881d9c6af9da4257c69c327c4e2f1508b2fa754b",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2"
],
"score": 5.5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.",
"vector_string": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-2023-51385": {
"id": "CVE-2023-51385",
"references": [
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/26/4",
"https://github.com/openssh/openssh-portable/commit/7ef3787c84b6b524501211b11a26c742f829af1a",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://vin01.github.io/piptagole/ssh/security/openssh/libssh/remote-code-execution/2023/12/20/openssh-proxycommand-libssh-rce.html",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/26/4",
"https://github.com/openssh/openssh-portable/commit/7ef3787c84b6b524501211b11a26c742f829af1a",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://vin01.github.io/piptagole/ssh/security/openssh/libssh/remote-code-execution/2023/12/20/openssh-proxycommand-libssh-rce.html",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2"
],
"score": 6.5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"weakness": "CWE-78"
},
"CVE-2023-51767": {
"id": "CVE-2023-51767",
"references": [
"https://access.redhat.com/security/cve/CVE-2023-51767",
"https://arxiv.org/abs/2309.02545",
"https://bugzilla.redhat.com/show_bug.cgi?id=2255850",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/auth-passwd.c#L77",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/monitor.c#L878",
"https://security.netapp.com/advisory/ntap-20240125-0006/",
"https://ubuntu.com/security/CVE-2023-51767",
"https://access.redhat.com/security/cve/CVE-2023-51767",
"https://arxiv.org/abs/2309.02545",
"https://bugzilla.redhat.com/show_bug.cgi?id=2255850",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/auth-passwd.c#L77",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/monitor.c#L878",
"https://security.netapp.com/advisory/ntap-20240125-0006/",
"https://ubuntu.com/security/CVE-2023-51767"
],
"score": 7,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "OpenSSH through 9.6, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges.",
"vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "NVD-CWE-Other"
}
}
}