182.169.21.111
{
"scan_id": 1769827595,
"ip": "182.169.21.111",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "182.169.21.0/25",
"postal_code": "530-0041",
"coordinates": {
"latitude": "34.6967",
"longitude": "135.5154"
},
"geo_point": "34.6967, 135.5154",
"locale_code": "en",
"continent": "Asia",
"country_code": "JP",
"country_name": "Japan",
"city": "Osaka"
},
"location_updated_at": "2026-02-01T16:40:59Z",
"asn": {
"number": "AS2527",
"organization": "Sony Network Communications Inc.",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "182.168.0.0/14",
"organization": "Sony Network Communications Inc.",
"descr": "Sony Network Communications Inc.,\n4-12-3, Higashishinagawa, Shinagawa-ku, Tokyo, 140-0002, Japan",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-09T19:03:53Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2026-02-01T16:40:59Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2026-02-01T22:16:55Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2026-02-01T16:40:59Z"
}
],
"hostnames": [
{
"name": "fsb6a9156f.oski401.ap.nuro.jp",
"last_updated_at": "2026-02-01T22:16:55Z"
}
],
"services": [
{
"port": 22,
"protocol": "tcp",
"name": "ssh",
"version": "8.5",
"product": "OpenSSH",
"extra_info": "protocol 2.0",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:openbsd:openssh:8.5",
"part": "a",
"vendor": "openbsd",
"product": "openssh",
"version": "8\\.5",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"ssh": {
"banner": "SSH-2.0-OpenSSH_8.5",
"client_to_server_ciphers": [
"aes128-ctr",
"aes192-ctr",
"aes256-ctr"
],
"client_to_server_compression": [
"none",
"[email protected]"
],
"client_to_server_macs": [
"hmac-sha1",
"hmac-sha2-256",
"hmac-sha2-512"
],
"host_key_algorithms": [
"rsa-sha2-512",
"rsa-sha2-256",
"ssh-rsa"
],
"kex_algorithms": [
"curve25519-sha256",
"[email protected]",
"ecdh-sha2-nistp521",
"ecdh-sha2-nistp384",
"ecdh-sha2-nistp256",
"diffie-hellman-group14-sha256",
"diffie-hellman-group14-sha1",
"diffie-hellman-group16-sha512",
"diffie-hellman-group18-sha512",
"diffie-hellman-group-exchange-sha256"
],
"key": {
"algorithm": "ssh-rsa",
"fingerprint_sha256": "726ae1155e427471416768b12e9306783fc514461fec9a88cd0f16d15e8d759c",
"raw": "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"
},
"server_to_client_ciphers": [
"aes128-ctr",
"aes192-ctr",
"aes256-ctr"
],
"server_to_client_compression": [
"none",
"[email protected]"
],
"server_to_client_macs": [
"hmac-sha1",
"hmac-sha2-256",
"hmac-sha2-512"
],
"software": "OpenSSH_8.5",
"version": "2.0"
}
},
"cve": [
{
"id": "CVE-2007-2768",
"score": 4.3,
"severity": "medium"
},
{
"id": "CVE-2008-3844",
"score": 9.3,
"severity": "high"
},
{
"id": "CVE-2016-20012",
"score": 5.3,
"severity": "medium"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-02-04T16:56:47.668Z"
},
{
"port": 443,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"modules": {
"http": {
"body": "<!DOCTYPE HTML PUBLIC \"-//W3C//DTD HTML 4.01//EN\"\n \"http://www.w3.org/TR/html4/strict.dtd\"> \n<html>\n<head>\n\t<meta name=\"robots\" content=\"noodp\">\n\t<meta content=\"text/html; charset=utf-8\" http-equiv=\"Content-Type\">\n\t<meta HTTP-EQUIV=\"Pragma\" CONTENT=\"no-cache\">\n\t<meta HTTP-EQUIV=\"Expires\" CONTENT=\"-1\">\n\t<meta HTTP-EQUIV=\"Cache-control\" CONTENT=\"max-age=0\">\n\t<title>Check Point SSL Network Extender</title>\n\t<meta name=\"title\" content=\"Check Point SSL Network Extender\">\n\t<meta name=\"robots\" content=\"noindex\">\n\t<meta name=\"Copyright\" content=\"checkpoint\">\n\t<link rel=\"shortcut icon\" href=\"theme/images/favicon.png\">\n\t<link rel=\"stylesheet\" href=\"skin/chkp/skin1/index.css\" type=\"text/css\">\n\t<style>\n\t\tBODY { background: white url(bkg.gif);\n\t\t margin: 0 0 0 0 ;\n\n\t\t color: white;\n\t\t font-size: 11;\n\t\t}\n\n\t\ta {color: #99ccff;};\n\n\t\tTABLE {\n\t\t\t font-size: 12;\n\t\t}\n\n\t\t.right_menu {\n\t\t\tcolor: #99ccff;\n\t\t}\n\n\t\ta.right_menu {\n\t\t\tcolor: #99ccff;\n\t\t}\n\n\t\t.links_table { \n\t\t\t\t\tcolor: black;\n\t\t\t\t\twidth:600px;\n\t\t\t\t\theight:110px; \n\t\t\t\t\tborder:1px solid black;\n\t\t\t\t\tmargin: 5px;\n\t\t\t\t\twhite-space: nowrap;\n\t\t\t\t\tbackground-color : White;\n\t\t\t\t\toverflow : scroll; \n\t\t}\n\n\t\ta.links_table {color: black;};\n\n\t\t.copyright_font {\n\t\t\tfont-size: 10;\n\t\t\tposition:relative;\n\t\t\t\n\t\t\tbottom:0; \n\t\t\talign: center;\n\t\t}\n\n\t\t.isb_header {\n\t\t\tcolor: #000080;\n\t\t}\n\n\t\t.zl-alertTable { \n\t\t\twidth: 100%; \n\t\t\tborder: 1px solid #3284b3; \n\t\t\tmargin-bottom: 10px\n\t\t}\n\n\t\t.zl-alertData {\n\t\t\tpadding: 1px 1px 2px 7px; \n\t\t\tcolor: white; \n\t\t\tfont-weight: bold\n\t\t}\n\n\t\t.zl-alertText {\n\t\t\tpadding: 1px 1px 2px 7px;\n\t\t\tcolor: white;\n\t\t\tfont-weight: normal\n\t\t}\n\n\t\t.error_table {\n\t\t\tborder:1px solid black;\n\t\t\tbackground-color : #FFFCF8;\n\t\t}\n\t\t \n\t\t.snx_title {\n\t\t\tfont-size: 24;\n\t\t\tcolor: #99ccff;\n\t\t}\n\n\t\t.wssTree-container {\n\t\t\tmargin: 0px;\n\t\t\tpadding: 0px 0px 0px 0px;\n\t\t\twhite-space: nowrap;\n\t\t\tborder: 0px;\n\t\t}\n\n\t\t.wssTree-item {\n\t\t\tpadding: 0px 0px 0px 0px;\n\t\t\tmargin: 0px;\n\t\t\twhite-space: nowrap;\n\t\t\tborder: 0px;\n\t\t}\n\n\t\t.wssTree-item a, .wssTree-item a:active, .wssTree-item a:hover {\n\t\t\tmargin-left: 0px;\n\t\t\tpadding: 1px 2px 1px 2px;\n\t\t\tcolor: black;\n\t\t}\n\n\t\t.wssTree-item img {\n\t\t\tvertical-align: middle;\n\t\t\tborder: 0px;\n\t\t}\n\n\t\t.wssTree-icon {\n\t\t\theight: 16px;\n\t\t\twidth: 19px;\n\t\t}\n\t\t.helplinkTable {background-color: #cccccc; color:black}\n\t\t.helplinkIcon {padding-right: 7px}\n\t\t.helplinkTitle {vertical-align: middle}\n\t\t.helplinkHint {background-color: #ffffff; padding-top: 7px; padding-bottom: 7px}\n\t\t.helplinkHint2 {background-color: #ffffff; padding-top: 7px; padding-bottom: 7px; font-size: 11pt}\n\n\t\t.splashList {padding-top: 2px; padding-bottom: 2px}\n\n\t\t.regularRow td {background-color: #dfdfdf}\n\t\t.selectedRow td {background-color: #cccccc}\n\t\t.disabledRegularRow td {background-color: #dfdfdf; color: #999999}\n\t\t.disabledSelectedRow td {background-color: #cccccc; color: #999999}\n\n\t\t.hoverMenuOn {color: #ffffff; background-color: #cccccc}\n\t\t.hoverMenuOff {color: #000000; background-color: #ffffff}\n\n\t\t.zl-tabOn {\n\t\tbackground-color: #ffffff;\n\t\twidth: 70px;\n\t\ttext-align: center;\n\t\tpadding: 4px;\n\t\tborder: solid 1px #000000; \n\t\tborder-bottom: solid 1px #ffffff;\n\t\twhite-space: nowrap; \n\t\tfont-weight: bold;\n\t\t}\n\n\t\t.zl-tabOff {\n\t\tbackground-color: #dfdfdf;\n\t\twidth: 70px;\n\t\ttext-align:center;\n\t\tpadding: 4px;\n\t\tborder: solid 1px #000000;\n\t\tborder-bottom: solid 1px #000000;\n\t\twhite-space: nowrap;\n\t\tfont-weight: bold;\n\t\t}\n\n\t\t.zl-tabOff a:visited,\n\t\t.zl-tabOn a:visited,\n\t\t.zl-tabOn a:link,\n\t\t.zl-tabOff a:link {color: #000000; text-decoration: none}\n\n\t\t.zl-tabSpace {\n\t\twidth: 7px;\n\t\tborder: solid 0px #000000;\n\t\tborder-bottom: solid 1px #000000\n\t\t}\n\n\t\t.zl-tabSpaceEnd {\n\t\twidth: 100%;\n\t\tborder: solid 0px #000000;\n\t\tborder-bottom: solid 1px #000000;\n\t\t}\n\n\t\t.zl-tabHideShow {\n\t\twidth: auto;\n\t\tpadding: 1px;\n\t\tborder-bottom: solid 1px #000000\n\t\t}\n\n\t</style>\n\t<link rel=\"stylesheet\" href=\"theme/css/style.css\" type=\"text/css\">\n\t<style>\n\t* {\n\t\t\tmargin: 0;\n\t\t}\n\n\t\thtml {\n\t\t\theight: 100%;\n\t\t}\n\n\t\tbody {\n\t\t\tbackground: url(theme/images/banner_background.png) #f1f5ff repeat-x top center;\n\t\t\tfont-family: Segoe UI, Segoe UI Light, calibri, arial;\n\t\t\tfont-size: 14px;\n\t\t\tcolor: #384c4e;\n\t\t\theight: 100%;\n\t\t\toverflow: hidden !important;\n\t\t}\n\n\t\th1 {\n\t\t\tfont-size: 30px;\n\t\t\tmargin: 30px 0px;\n\t\t}\n\n\t\tp {\n\t\t\tfont-size: 14px;\n\t\t}\n\n\t\ta {\n\t\t\tcolor: #3d81ff !important;\n\t\t\ttext-decoration: none;\n\t\t}\n\t\ta:hover {\n\t\t\ttext-decoration: underline !important;\n\t\t}\n\n\t\t#main-body {\n\t\t\twidth: 990px;\n\t\t\tmargXXin: 0px auto;\n\t\t\t\n\t\t\tmin-height: 100%;\n\t\t\theight: auto !important;\n\t\t\theight: 100%;\n\t\t\tmargin: 0 auto -50px;\n\t\t}\n\n\t\t#inner-body {\n\t\t\t\n\t\t\tmin-height: 100%;\n\t\t\theight: auto !important;\n\t\t\theight: 100%;\n\t\t\tmargin: 0 auto -50px;\n\t\t}\n\n\t\t.push {\n\t\t\theight: 50px;\n\t\t\tclear: both;\n\t\t}\n\n\t\t#footer {\n\t\t\tborder-top: 1px solid #bfc8d8;\n\t\t\theight: 50px;\n\t\t\tclear: both;\n\t\t}\n\n\t\t#footer-content {\n\t\t\tmargin: 0px auto;\n\t\t\tcolor: #b6bbc5;\n\t\t\tfont-size: 12px;\n\t\t\twidth: 350px;\n\t\t\theight: 50px;\n\t\t\tline-height: 50px;\n\t\t\ttext-align: center;\n\t\t}\n\n\t\t#first-column {\n\t\t\twidth: 649px;\n\t\t\tfloat: left;\n\t\t\tmargin-left: 20px;\n\t\t}\n\n\t\t#vert-separator {\n\t\t\twidth: 1px;\n\t\t\tfloat: left;\n\t\t\tbackground-color: #D9DFEC;\n\t\t\theight: 350px;\n\t\t\tmargin: 80px 20px 30px 10px;\n\t\t}\n\n\t\t#second-column {\n\t\t\twidth: 270px;\n\t\t\tfloat: right;\n\t\t\tmargin-top: 80px;\n\t\t\tmargin-right: 20px;\n\t\t}\n\n\t\tul.links {\n\t\t\tlist-style-type: none;\n\t\t\tpadding: 0px;\n\t\t\tmargin: 10px 0px 0px 0px;\n\t\t}\n\n\t\tul.links li{\n\t\t\tborder-top: 1px #bfc8d8 dotted;\n\t\t\tpadding: 10px 0px;\n\t\t\t\n\t\t\tbackground-image: url(theme/images/arrow_close.png);\n\t\t\tbackground-repeat: no-repeat;\n\t\t\tbackground-position: 0px 15px;\n\t\t\tpadding-left: 14px; \n\t\t}\n\n\t\t.rtl-body {\n\t\t\tdirection: rtl;\n\t\t}\n\n\t\t.rtl-body ul.links li {\n\t\t\tbackground-image: url(theme/images/arrow_close-rtl.png);\n\t\t\tbackground-position: 260px 15px !important;\n\t\t\tpadding-right: 16px !important;\n\t\t\tpadding-left: 0px !important;\n\t\t}\n\n\t\t.collapsed-li{\n\t\t\tbackground-image: url(theme/images/arrow_down.png) !important;\n\t\t}\n\n\t\t#main-pop-up-body {\n\t\t\twidth: 430px;\n\t\t\theight: 300px;\n\t\t}\n\n\t\t#main-pop-up-body .header {\n\t\t\twidth: 430px;\n\t\t\theight: 300px;\n\t\t}\n\n\t\t#main_div {\n\t\t\theight: 100%;\n\t\t}\n\t</style>\n\t<script type=\"text/javascript\" src='cookies.js'></script>\n\t<script type=\"text/javascript\" src='theme/js/code.js'></script>\n\t<script>\n\t\tvar extender = null, help_win = null;\n\t\tfunction activeXable()\n\t\t{\n\n\t\t\tvar ua = window.navigator.userAgent;\n\t\t\tvar msie = ua.indexOf ( \"MSIE \" );\n\t\t\tvar trident = ua.indexOf ( \"Trident\" );\n\n\t\t\tif (( msie > 0 ) || ( trident > 0 )) // If Internet Explorer - return 1\n\t\t\t\t{\n\t\t\t\treturn 1;\n\t\t\t\t}\n\t\t\telse // If another browser - return 0\n\t\t\t\t{\n\t\t\t\treturn 0;\n\t\t\t\t}\n\t\t}\n\t\tfunction open_win()\n\t\t{\n\t\t\ttry {\n\t\t\t\tif(activeXable())\n\t\t\t\t\textender = window.open('pre_login.html','pre_login','width=438,height=324,menubar=0,resizable=1,scrollbars=0,status=0,titlebar=no');\n\t\t\t\telse\n\t\t\t\t\textender = window.open('extender.html','pre_login','width=438,height=324,menubar=0,resizable=0,scrollbars=0,status=0,titlebar=no');\n\t\t\t} catch (e) {\n\t\t\t}\n\t\t\tif (extender == null)\n\t\t\t{\n\t\t\t\tdocument.getElementById(\"popup_div\").style.display = \"block\";\n\t\t\t\talert(popup_blocked);\n\t\t\t}\n\t\t}\n\n\t\tfunction HelpPopUp() \n\t\t{\n\t\t\thelp_win = window.open( \"help.html\", \"Help\", \"toolbar=0,status=0,width=800,height=600,scrollbars=0,resizable=0\" );\n\t\t\thelp_win.focus();\n\t\t}\n\n\t\tfunction set_initial_cookie()\n\t\t{\n\t\t\ttry {\n\t\t\t\tif(getCookie(\"language\") == null)\n\t\t\t\t\tsetCookie(\"language\",\"english\");\n\t\t\t\tif(getCookie(\"skin\") == null)\n\t\t\t\t\tsetCookie(\"skin\",\"skin1\");\n\t\t\t} catch (e) {}\t\n\t\t}\n\n\t\t function set_cookie_and_reload(name, value)\n\t\t{\n\t\t\tif (name == \"language_second\")\n\t\t\t\tname = \"language\";\n\t\t\tif (name == \"skin_second\")\n\t\t\t\tname = \"skin\";\n\t\t\tsetCookie(name, value);\n\t\t\tif (name == \"language\")\n\t\t\t{\n\t\t\t\thistory.go(0);\n\t\t\t}\n\t\t\tif (name == \"skin\")\n\t\t\t{\n\t\t\t\tsetStyleSheet(value);\t\n\t\t\t\ttry {\n\t\t\t\t\tsetStyleSheet(value, extender.document);\n\t\t\t\t} catch (e) {}\n\t\t\t\ttry {\n\t\t\t\t\tsetStyleSheet(value, extender.proxy_win.document);\n\t\t\t\t\t} catch (e) {}\n\t\t\t\t\ttry {\n\t\t\t\t\tsetStyleSheet(value, extender.reauth_win.document);\n\t\t\t\t\t} catch (e) {}\n\t\t\t\t\ttry {\n\t\t\t\t\tsetStyleSheet(value, extender.help_win.document);\n\t\t\t\t\tsetStyleSheet(value, extender.help_win.help_iframe.document);\n\t\t\t\t\t} catch (e) {}\n\t\t\t\t\ttry {\n\t\t\t\t\tsetStyleSheet(value, help_win.document);\n\t\t\t\t\tsetStyleSheet(value, help_win.help_iframe.document);\n\t\t\t\t\t} catch (e) {}\n\t\t\t\t\n\t\t\t}\n\t\t}\n\n\t\tfunction init_selects()\n\t\t{\n\t\t\ttry {\n\t\t\t\tif (getCookie(\"language\") != null)\n\t\t\t\t{\n\t\t\t\t\tsetSelectedCombo(document.getElementById(\"language\"),getCookie(\"language\"));\n\t\t\t\t\tsetSelectedCombo(document.getElementById(\"language_second\"),getCookie(\"language\"));\n\t\t\t\t}\n\t\t\t\tif (getSelectedCombo(document.getElementById(\"language\")) != getCookie(\"language\"))\n\t\t\t\t\tset_cookie_and_reload(\"language\", getSelectedCombo(document.getElementById(\"language\")));\n\t\t\t\tif (getCookie(\"skin\") != null)\n\t\t\t\t{\n\t\t\t\t\tsetSelectedCombo(document.getElementById(\"skin\"),getCookie(\"skin\"));\n\t\t\t\t\tsetSelectedCombo(document.getElementById(\"skin_second\"),getCookie(\"skin\"));\n\t\t\t\t}\n\t\t\t\tif (getSelectedCombo(document.getElementById(\"skin\")) != getCookie(\"skin\"))\n\t\t\t\t\tset_cookie_and_reload(\"skin\", getSelectedCombo(document.getElementById(\"skin\")));\n\t\t\t} catch (e) {}\n\t\t}\n\n\t\tfunction showCmdSnx()\n\t\t{\n\t\t\tdocument.getElementById(\"CmdSnx\").style.display = \"inline\";\n\t\t\tdocument.getElementById(\"Cmd_Snx_Win\").title = download_Cmd_Snx_Win_alt;\n\t\t}\n\n\t\tfunction Cmd_Snx_Win_press()\n\t\t{\n\t\t\tdocument.getElementById(\"Cmd_Snx_Win\").click();\n\t\t}\n\t</script>\n</head> \n<body onload=\"open_win(); set_initial_cookie(); init_selects();\" leftmargin=\"0\" topmargin=\"0\" marginwidth=\"0\" marginheight=\"0\">\n\n<div id=\"main_div\">\n\t<div id=\"main-body\">\n\t\t<div class=\"header\">\n\t\t\t<img src=\"theme/images/cp_logo.png\" alt=\"Company logo\" border=\"0\" style=\"margin-left: 20px; max-width: 850px;max-height: 97px;\" />\n\t\t\t\n\t\t\t<div class=\"company_logo\"></div>\n\t\t</div>\n\t\t<script>\n\t\t\tif (CURRENT_DIRECTION=='rtl') {\n\t\t\t\tdocument.write('<div id=\"inner-body\" class=\"rtl-body\">');\n\t\t\t}\n\t\t\telse {\n\t\t\t\tdocument.write('<div id=\"inner-body\">');\n\t\t\t}\n\t\t</script>\n\t\t\t<div id=\"first-column\">\n\t\t\t\t<h1><script>document.write(snx)</script></h1>\n\t\t\t\t<p>\n\t\t\t\t\t<script>document.write(activex_welcome_message)</script>\n\t\t\t\t</p>\n\t\t\t\t<div id=\"popup_div\" style=\"display:none\"> \n\t\t\t\t\t<p><input type=\"button\" id=\"continue\" onclick=\"open_win()\" value=\"\"></p>\n\t\t\t\t\t<script>document.getElementById(\"continue\").value = open_popup</script>\n\t\t\t\t</div>\n\t\t\t</div>\n\t\t\t<div id=\"vert-separator\"></div>\n\t\t\t<div id=\"second-column\">\n\t\t\t\t<script>writeLanguages(document,language_str, 'language')</script>\n\t\t\t\t\n\t\t\t\t<ul class=\"links\">\n\t\t\t\t\t<li>\n\t\t\t\t\t\t<a class=\"right_menu\" href=\"javascript:HelpPopUp()\">\n\t\t\t\t\t\t\t<script>document.write(help)</script>\n\t\t\t\t\t\t</a>\n\t\t\t\t\t</li>\n\t\t\t\t\t<li>\n\t\t\t\t\t\t<a class=\"right_menu\" href=\"http://www.checkpoint.com/products/ssl_network_ext/information.html\" target=\"_blank\"> \n\t\t\t\t\t\t\t<script>document.write(find_out_more)</script>\n\t\t\t\t\t\t</a>\n\t\t\t\t\t</li>\n\t\t\t\t\t<li id=\"collapsedLink\">\n\t\t\t\t\t\t<a class=\"right_menu\" href=\"javascript:showCmdSnx();\">\n\t\t\t\t\t\t\t<script>document.write(show_Cmd_Snx)</script>\n\t\t\t\t\t\t</a>\n\t\t\t\t\t\t<div id=\"CmdSnx\" style=\"display: none;\">\n\t\t\t\t\t\t\t<ul class=\"links\" style=\"margin-left: 20px;\">\n\t\t\t\t\t\t\t\t<li>\n\t\t\t\t\t\t\t\t\t<a class=\"right_menu\" href=\"CSHELL/cpextender.msi\" target=\"_blank\" id=\"Cmd_Snx_Win\" title=\"\"><script>document.write(download_Cmd_Snx_Win)</script></a>\n\t\t\t\t\t\t\t\t</li>\n\t\t\t\t\t\t\t\t<li>\n\t\t\t\t\t\t\t\t\t<a class=\"right_menu\" href=\"CSHELL/snx_install.sh\" target=\"_blank\"><script>document.write(download_Cmd_Snx_Lnx)</script></a>\n\t\t\t\t\t\t\t\t</li>\n\t\t\t\t\t\t\t\t<li>\n\t\t\t\t\t\t\t\t\t<a class=\"right_menu\" href=\"CSHELL/snx_install_osx.sh\" target=\"_blank\"><script>document.write(download_Cmd_Snx_Mac)</script></a>\n\t\t\t\t\t\t\t\t</li>\n\t\t\t\t\t\t\t</ul>\n\t\t\t\t\t\t</div>\n\t\t\t\t\t</li>\n\t\t\t\t</ul>\n\t\t\t\t\n\t\t\t\t\n\t\t\t\t<!--\n\t\t\t\t\n\t\t\t\t <tr> \n\t\t\t\t\t<td colspan=\"2\"> </td>\n\t\t\t\t\t<td> </td>\n\t\t\t\t\t<td rowspan=\"3\" valign=\"top\"><br><a href=\"http://www.zonelabs.com/zasssslnetext\"><img src=\"bottom1.gif\" border=\"0\"></a></td>\n\n\t\t\t\t </tr>\n\t\t\t\t <tr> \n\t\t\t\t\t<td> </td>\n\t\t\t\t\t<td valign=\"top\"> \n\t\t\t\t\t <p><b><script>document.write(connected_big)</script></b></p>\n\t\t\t\t\t <p><b><script>document.write(connected_message)</script></b><br>\n\t\t\t\t\t\t<br><script>document.write(can_be_closed)</script></p>\n\t\t\t\t\t <p><br>\n\t\t\t\t\t </p>\n\t\t\t\t\t</td>\n\t\t\t\t\t<td> </td>\n\n\t\t\t\t </tr>\n\t\t\t\t\n\t\t\t\t\n\t\t\t\t-->\n\t\t\t\t\n\t\t\t</div>\n\t\t</div>\n\t\t<div class=\"push\"></div>\n\t</div>\n\t<div id=\"footer\">\n\t\t<div id=\"footer-content\">\n\t\t© <script>document.write(copyright)</script>\n\t\t</div>\n\t</div>\n</div>\n\n</body>\n \n<SCRIPT language=\"JavaScript\">try { document.user_password.timestamp.value = \"1770020424\"; neo_upgrade_mode=\"0\"; neo_upgrade_version=\"0\"; neo_upgrade_url=\"\"; neo_saa_guilibs=\"\"; neo_saa_url=\"\"; } catch (e) {} </SCRIPT></HTML>",
"body_murmur": 1262697430,
"body_sha256": "8d34ce2c31b3d4bef7a957cf13131cfe00c10326a4845564d49f0f91cfcc6220",
"content_length": 12745,
"favicon": {
"md5_hash": "10ff88c84c69a95a48e8ca9cf1b6843c",
"murmur_hash": 794809961,
"path": "https://182.169.21.111:443/theme/images/favicon.png",
"size": 766
},
"headers": {
"connection": [
"close"
],
"content_length": [
"12745"
],
"content_type": [
"text/html"
],
"date": [
"Mon, 02 Feb 2026 08:20:24 GMT"
],
"server": [
"Check Point SVN foundation"
],
"set_cookie": [
"host=182.169.21.111"
],
"strict_transport_security": [
"max-age=31536000; includeSubDomains"
],
"x_frame_options": [
"SAMEORIGIN"
],
"x_ua_compatible": [
"IE=EmulateIE7"
]
},
"protocol": "HTTP/1.0",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "182.169.21.111",
"path": "",
"scheme": "https"
}
},
"status_code": 200,
"title": "Check Point SSL Network Extender"
},
"tls": {
"certificate": {
"extensions": {
"basic_constraints": {
"is_ca": true
},
"crl_distribution_points": [
"http://ap-2.spark-management.checkpoint.com/SMC/crl/SMP_CA_CRL.crl"
],
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": false,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
}
},
"fingerprint_md5": "EB6CA6920CBD513FA6961264270E3305",
"fingerprint_sha1": "7549A40D8B23877BAC777A1F5D4EFF0B4012AE85",
"fingerprint_sha256": "A9C5E98F9C46B4FA02A54818DEB72E5790CA931DEF42BD1FFB8C67D1F2747F3C",
"issuer": {
"domain_component": [
"com",
"smbmgmtsrv"
],
"organization": [
"global"
],
"organizational_unit": [
"ca"
]
},
"issuer_dn": "/DC=com/DC=smbmgmtsrv/O=global/OU=ca",
"jarm": "29d29d00029d29d21c29d29d29d29d2bb1101b28b790bf5d9d4dcad463fdc2",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2026-02-03T14:16:11",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "628644",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "NTY5MTc0ZjhmNDA0ZTdiNDQ3YTcyZjNjMTQ3NDNmNWUzZWI2Y2YyNDJjMGM1MjA4ZDhkYzYwNGNmMGY4N2ZlZDRiNTcwZGJiMzZlMWYyOTQ3OGI1Zjk0ODVhNzVlZmNiNjgwMmQxNWU4NDZmNzkwMDk0NmY1YjI5ZTJiYmQ1MDExOGI1MTI0MDMzMzE2MGMyMTU4OGMyMWNlY2UwZDY4ZjIwNjE3OTUzMjVlNzU1YWUwNTE4ZGNiNDU0N2RlZjJkMWQzNGJkYTVlNjZmZmIyYWNiNWQ0OTZmNzcxMjNhYjlhNWUzYjQ5NWZjMzU5Y2I0NmE0Nzc1YzRkMzM0YjJlNA=="
},
"subject": {
"common_name": [
"sasagawa-osaka"
],
"domain_component": [
"com",
"smbmgmtsrv"
],
"organization": [
"SMP_Portals"
],
"organizational_unit": [
"psi2",
"Gateways"
]
},
"subject_alt_name": {
"dns_names": [
"sasagawa-osaka"
],
"extended_dns_names": []
},
"subject_dn": "/DC=com/DC=smbmgmtsrv/O=SMP_Portals/OU=psi2/OU=Gateways/CN=sasagawa-osaka",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "06e6af91f34bdeb5ae91e6fa104c16ed213fa46f9d65afe1458ae4630cfb910a",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "119888485f8c0e034bfb70df5e1022e26a6dcdf6f6dfe073806d9eddc1fdede8",
"validation_level": "OV",
"validity": {
"length_seconds": 31622400,
"not_after": "2026-12-18T18:41:42",
"not_before": "2025-12-17T18:41:42"
},
"version": 2
},
"fingerprint_sha256": "A9C5E98F9C46B4FA02A54818DEB72E5790CA931DEF42BD1FFB8C67D1F2747F3C",
"precert": false,
"raw": "MIIDWjCCAsOgAwIBAgIDCZekMA0GCSqGSIb3DQEBCwUAME8xEzARBgoJkiaJk/IsZAEZEwNjb20xGjAYBgoJkiaJk/IsZAEZEwpzbWJtZ210c3J2MQ8wDQYDVQQKEwZnbG9iYWwxCzAJBgNVBAsTAmNhMB4XDTI1MTIxNzE4NDE0MloXDTI2MTIxODE4NDE0MlowgYIxEzARBgoJkiaJk/IsZAEZEwNjb20xGjAYBgoJkiaJk/IsZAEZEwpzbWJtZ210c3J2MRQwEgYDVQQKFgtTTVBfUG9ydGFsczENMAsGA1UECxMEcHNpMjERMA8GA1UECxMIR2F0ZXdheXMxFzAVBgNVBAMTDnNhc2FnYXdhLW9zYWthMIIBIjANBgkqhkiG9w0BAQEFAAOCAQ8AMIIBCgKCAQEApSGQeCSK6oHsJKZB0WxUDUsM2CDVUETXsR7UcXT6bhvX+fUw6aHshZSj4WLSpainkdnhHSU4tx7N//kocUt0/1bu2zv3YRpJt1TtSMP8GbNXyTsEQA0HsLsgJVVUfipqKbOnHW6teYHdPxhzELa1bs6L/xi48UacgCT/r/yV+xNVwxTUqLvPe3Y5NNGgBvwi3WTlsHQqgLWj33DQHMkdePgPW7/vg6OIvOPZ5/ngLTT+YTWdz0aJ/nfNlTtM0jKsvWrS8cahJ2QM2vAG+nDcG162y110AV2DKTdodbyr4PUxO4K48q8GcT4vI0W8GqpNefe+vdkNG3ep5axMiF12RwIDAQABo4GLMIGIMAwGA1UdEwEB/wQCMAAwDgYDVR0PAQH/BAQDAgWgMBMGA1UdJQQMMAoGCCsGAQUFBwMBMFMGA1UdHwRMMEowSKBGoESGQmh0dHA6Ly9hcC0yLnNwYXJrLW1hbmFnZW1lbnQuY2hlY2twb2ludC5jb20vU01DL2NybC9TTVBfQ0FfQ1JMLmNybDANBgkqhkiG9w0BAQsFAAOBgQBWkXT49ATntEenLzwUdD9ePrbPJCwMUgjY3GBM8Ph/7UtXDbs24fKUeLX5SFp178toAtFehG95AJRvWyniu9UBGLUSQDMxYMIViMIc7ODWjyBheVMl51WuBRjctFR97y0dNL2l5m/7KstdSW93Ejq5peO0lfw1nLRqR3XE0zSy5A==",
"tags": [
"ov",
"trusted"
]
}
},
"url": "https://182.169.21.111/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-02-02T09:14:42.418Z"
}
],
"services_hash": "215edfab933e549ea540f8ef072169fb0f05bf49333efa4f622aa074ee3531ab",
"last_updated_at": "2026-02-04T16:56:47.668Z",
"banner": [
"ssh",
"http",
"tls"
],
"is_vuln": true,
"cveDetails": {
"CVE-2007-2768": {
"id": "CVE-2007-2768",
"references": [
"http://archives.neohapsis.com/archives/fulldisclosure/2007-04/0635.html",
"http://www.osvdb.org/34601",
"https://security.netapp.com/advisory/ntap-20191107-0002/",
"http://archives.neohapsis.com/archives/fulldisclosure/2007-04/0635.html",
"http://www.osvdb.org/34601",
"https://security.netapp.com/advisory/ntap-20191107-0002/"
],
"score": 4.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.",
"vector_string": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"weakness": "CWE-200"
},
"CVE-2008-3844": {
"id": "CVE-2008-3844",
"references": [
"http://secunia.com/advisories/31575",
"http://secunia.com/advisories/32241",
"http://securitytracker.com/id?1020730",
"http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm",
"http://www.redhat.com/security/data/openssh-blacklist.html",
"http://www.redhat.com/support/errata/RHSA-2008-0855.html",
"http://www.securityfocus.com/bid/30794",
"http://www.vupen.com/english/advisories/2008/2821",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/44747",
"http://secunia.com/advisories/31575",
"http://secunia.com/advisories/32241",
"http://securitytracker.com/id?1020730",
"http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm",
"http://www.redhat.com/security/data/openssh-blacklist.html",
"http://www.redhat.com/support/errata/RHSA-2008-0855.html",
"http://www.securityfocus.com/bid/30794",
"http://www.vupen.com/english/advisories/2008/2821",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/44747"
],
"score": 9.3,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.",
"vector_string": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"weakness": "CWE-20"
},
"CVE-2016-20012": {
"id": "CVE-2016-20012",
"references": [
"https://github.com/openssh/openssh-portable/blob/d0fffc88c8fe90c1815c6f4097bc8cbcabc0f3dd/auth2-pubkey.c#L261-L265",
"https://github.com/openssh/openssh-portable/pull/270",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-920577097",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-943909185",
"https://rushter.com/blog/public-ssh-keys/",
"https://security.netapp.com/advisory/ntap-20211014-0005/",
"https://utcc.utoronto.ca/~cks/space/blog/tech/SSHKeysAreInfoLeak",
"https://www.openwall.com/lists/oss-security/2018/08/24/1",
"https://github.com/openssh/openssh-portable/blob/d0fffc88c8fe90c1815c6f4097bc8cbcabc0f3dd/auth2-pubkey.c#L261-L265",
"https://github.com/openssh/openssh-portable/pull/270",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-920577097",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-943909185",
"https://rushter.com/blog/public-ssh-keys/",
"https://security.netapp.com/advisory/ntap-20211014-0005/",
"https://utcc.utoronto.ca/~cks/space/blog/tech/SSHKeysAreInfoLeak",
"https://www.openwall.com/lists/oss-security/2018/08/24/1"
],
"score": 5.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"weakness": "NVD-CWE-Other"
},
"CVE-2021-36368": {
"id": "CVE-2021-36368",
"references": [
"https://bugzilla.mindrot.org/show_bug.cgi?id=3316",
"https://docs.ssh-mitm.at/trivialauth.html",
"https://github.com/openssh/openssh-portable/pull/258",
"https://security-tracker.debian.org/tracker/CVE-2021-36368",
"https://www.openssh.com/security.html",
"https://bugzilla.mindrot.org/show_bug.cgi?id=3316",
"https://docs.ssh-mitm.at/trivialauth.html",
"https://github.com/openssh/openssh-portable/pull/258",
"https://security-tracker.debian.org/tracker/CVE-2021-36368",
"https://www.openssh.com/security.html"
],
"score": 3.7,
"services": [
"22/ssh"
],
"severity": "low",
"summary": "An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is \"this is not an authentication bypass, since nothing is being bypassed.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"weakness": "CWE-287"
},
"CVE-2021-41617": {
"id": "CVE-2021-41617",
"references": [
"https://bugzilla.suse.com/show_bug.cgi?id=1190975",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XJIONMHMKZDTMH6BQR5TNLF2WDCGWED/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KVI7RWM2JLNMWTOFK6BDUSGNOIPZYPUT/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W44V2PFQH5YLRN6ZJTVRKAD7CU6CYYET/",
"https://security.netapp.com/advisory/ntap-20211014-0004/",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-8.8",
"https://www.openwall.com/lists/oss-security/2021/09/26/1",
"https://www.oracle.com/security-alerts/cpuapr2022.html",
"https://www.oracle.com/security-alerts/cpujul2022.html",
"https://www.starwindsoftware.com/security/sw-20220805-0001/",
"https://www.tenable.com/plugins/nessus/154174",
"https://bugzilla.suse.com/show_bug.cgi?id=1190975",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XJIONMHMKZDTMH6BQR5TNLF2WDCGWED/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KVI7RWM2JLNMWTOFK6BDUSGNOIPZYPUT/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W44V2PFQH5YLRN6ZJTVRKAD7CU6CYYET/",
"https://security.netapp.com/advisory/ntap-20211014-0004/",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-8.8",
"https://www.openwall.com/lists/oss-security/2021/09/26/1",
"https://www.oracle.com/security-alerts/cpuapr2022.html",
"https://www.oracle.com/security-alerts/cpujul2022.html",
"https://www.starwindsoftware.com/security/sw-20220805-0001/",
"https://www.tenable.com/plugins/nessus/154174"
],
"score": 7,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.",
"vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "NVD-CWE-Other"
},
"CVE-2023-38408": {
"id": "CVE-2023-38408",
"references": [
"http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html",
"http://www.openwall.com/lists/oss-security/2023/07/20/1",
"http://www.openwall.com/lists/oss-security/2023/07/20/2",
"http://www.openwall.com/lists/oss-security/2023/09/22/11",
"http://www.openwall.com/lists/oss-security/2023/09/22/9",
"https://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent",
"https://github.com/openbsd/src/commit/7bc29a9d5cd697290aa056e94ecee6253d3425f8",
"https://github.com/openbsd/src/commit/f03a4faa55c4ce0818324701dadbf91988d7351d",
"https://github.com/openbsd/src/commit/f8f5a6b003981bb824329dc987d101977beda7ca",
"https://lists.debian.org/debian-lts-announce/2023/08/msg00021.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CEBTJJINE2I3FHAUKKNQWMFGYMLSMWKQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RAXVQS6ZYTULFAK3TEJHRLKZALJS3AOU/",
"https://news.ycombinator.com/item?id=36790196",
"https://security.gentoo.org/glsa/202307-01",
"https://security.netapp.com/advisory/ntap-20230803-0010/",
"https://support.apple.com/kb/HT213940",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-9.3p2",
"https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt",
"https://www.vicarius.io/vsociety/posts/exploring-opensshs-agent-forwarding-rce-cve-2023-38408",
"http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html",
"http://www.openwall.com/lists/oss-security/2023/07/20/1",
"http://www.openwall.com/lists/oss-security/2023/07/20/2",
"http://www.openwall.com/lists/oss-security/2023/09/22/11",
"http://www.openwall.com/lists/oss-security/2023/09/22/9",
"https://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent",
"https://github.com/openbsd/src/commit/7bc29a9d5cd697290aa056e94ecee6253d3425f8",
"https://github.com/openbsd/src/commit/f03a4faa55c4ce0818324701dadbf91988d7351d",
"https://github.com/openbsd/src/commit/f8f5a6b003981bb824329dc987d101977beda7ca",
"https://lists.debian.org/debian-lts-announce/2023/08/msg00021.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CEBTJJINE2I3FHAUKKNQWMFGYMLSMWKQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RAXVQS6ZYTULFAK3TEJHRLKZALJS3AOU/",
"https://news.ycombinator.com/item?id=36790196",
"https://security.gentoo.org/glsa/202307-01",
"https://security.netapp.com/advisory/ntap-20230803-0010/",
"https://support.apple.com/kb/HT213940",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-9.3p2",
"https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt",
"https://www.vicarius.io/vsociety/posts/exploring-opensshs-agent-forwarding-rce-cve-2023-38408"
],
"score": 9.8,
"services": [
"22/ssh"
],
"severity": "critical",
"summary": "The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-428"
},
"CVE-2023-48795": {
"id": "CVE-2023-48795",
"references": [
"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/18/3",
"http://www.openwall.com/lists/oss-security/2023/12/19/5",
"http://www.openwall.com/lists/oss-security/2023/12/20/3",
"http://www.openwall.com/lists/oss-security/2024/03/06/3",
"http://www.openwall.com/lists/oss-security/2024/04/17/8",
"https://access.redhat.com/security/cve/cve-2023-48795",
"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
"https://bugs.gentoo.org/920280",
"https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
"https://bugzilla.suse.com/show_bug.cgi?id=1217950",
"https://crates.io/crates/thrussh/versions",
"https://filezilla-project.org/versions.php",
"https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
"https://github.com/NixOS/nixpkgs/pull/275249",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
"https://github.com/advisories/GHSA-45x7-px36-x8w8",
"https://github.com/apache/mina-sshd/issues/445",
"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
"https://github.com/cyd01/KiTTY/issues/520",
"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
"https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
"https://github.com/hierynomus/sshj/issues/916",
"https://github.com/janmojzis/tinyssh/issues/81",
"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
"https://github.com/libssh2/libssh2/pull/1291",
"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
"https://github.com/mwiede/jsch/issues/457",
"https://github.com/mwiede/jsch/pull/461",
"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
"https://github.com/openssh/openssh-portable/commits/master",
"https://github.com/paramiko/paramiko/issues/2337",
"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/456",
"https://github.com/rapier1/hpn-ssh/releases",
"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
"https://github.com/ronf/asyncssh/tags",
"https://github.com/ssh-mitm/ssh-mitm/issues/165",
"https://github.com/warp-tech/russh/releases/tag/v0.40.2",
"https://gitlab.com/libssh/libssh-mirror/-/tags",
"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
"https://help.panic.com/releasenotes/transmit5/",
"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
"https://matt.ucc.asn.au/dropbear/CHANGES",
"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
"https://news.ycombinator.com/item?id=38684904",
"https://news.ycombinator.com/item?id=38685286",
"https://news.ycombinator.com/item?id=38732005",
"https://nova.app/releases/#v11.8",
"https://oryx-embedded.com/download/#changelog",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
"https://roumenpetrov.info/secsh/#news20231220",
"https://security-tracker.debian.org/tracker/CVE-2023-48795",
"https://security-tracker.debian.org/tracker/source-package/libssh2",
"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
"https://security.gentoo.org/glsa/202312-16",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0004/",
"https://support.apple.com/kb/HT214084",
"https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
"https://twitter.com/TrueSkrillor/status/1736774389725565005",
"https://ubuntu.com/security/CVE-2023-48795",
"https://winscp.net/eng/docs/history#6.2.2",
"https://www.bitvise.com/ssh-client-version-history#933",
"https://www.bitvise.com/ssh-server-version-history",
"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.debian.org/security/2023/dsa-5588",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
"https://www.netsarang.com/en/xshell-update-history/",
"https://www.openssh.com/openbsd.html",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"https://www.openwall.com/lists/oss-security/2023/12/20/3",
"https://www.paramiko.org/changelog.html",
"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
"https://www.terrapin-attack.com",
"https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
"https://www.vandyke.com/products/securecrt/history.txt",
"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/18/3",
"http://www.openwall.com/lists/oss-security/2023/12/19/5",
"http://www.openwall.com/lists/oss-security/2023/12/20/3",
"http://www.openwall.com/lists/oss-security/2024/03/06/3",
"http://www.openwall.com/lists/oss-security/2024/04/17/8",
"https://access.redhat.com/security/cve/cve-2023-48795",
"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
"https://bugs.gentoo.org/920280",
"https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
"https://bugzilla.suse.com/show_bug.cgi?id=1217950",
"https://crates.io/crates/thrussh/versions",
"https://filezilla-project.org/versions.php",
"https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
"https://github.com/NixOS/nixpkgs/pull/275249",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
"https://github.com/advisories/GHSA-45x7-px36-x8w8",
"https://github.com/apache/mina-sshd/issues/445",
"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
"https://github.com/cyd01/KiTTY/issues/520",
"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
"https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
"https://github.com/hierynomus/sshj/issues/916",
"https://github.com/janmojzis/tinyssh/issues/81",
"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
"https://github.com/libssh2/libssh2/pull/1291",
"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
"https://github.com/mwiede/jsch/issues/457",
"https://github.com/mwiede/jsch/pull/461",
"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
"https://github.com/openssh/openssh-portable/commits/master",
"https://github.com/paramiko/paramiko/issues/2337",
"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/456",
"https://github.com/rapier1/hpn-ssh/releases",
"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
"https://github.com/ronf/asyncssh/tags",
"https://github.com/ssh-mitm/ssh-mitm/issues/165",
"https://github.com/warp-tech/russh/releases/tag/v0.40.2",
"https://gitlab.com/libssh/libssh-mirror/-/tags",
"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
"https://help.panic.com/releasenotes/transmit5/",
"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
"https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html",
"https://lists.debian.org/debian-lts-announce/2024/11/msg00032.html",
"https://lists.debian.org/debian-lts-announce/2025/04/msg00028.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://matt.ucc.asn.au/dropbear/CHANGES",
"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
"https://news.ycombinator.com/item?id=38684904",
"https://news.ycombinator.com/item?id=38685286",
"https://news.ycombinator.com/item?id=38732005",
"https://nova.app/releases/#v11.8",
"https://oryx-embedded.com/download/#changelog",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
"https://roumenpetrov.info/secsh/#news20231220",
"https://security-tracker.debian.org/tracker/CVE-2023-48795",
"https://security-tracker.debian.org/tracker/source-package/libssh2",
"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
"https://security.gentoo.org/glsa/202312-16",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0004/",
"https://support.apple.com/kb/HT214084",
"https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
"https://twitter.com/TrueSkrillor/status/1736774389725565005",
"https://ubuntu.com/security/CVE-2023-48795",
"https://winscp.net/eng/docs/history#6.2.2",
"https://www.bitvise.com/ssh-client-version-history#933",
"https://www.bitvise.com/ssh-server-version-history",
"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.debian.org/security/2023/dsa-5588",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
"https://www.netsarang.com/en/xshell-update-history/",
"https://www.openssh.com/openbsd.html",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"https://www.openwall.com/lists/oss-security/2023/12/20/3",
"https://www.paramiko.org/changelog.html",
"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
"https://www.terrapin-attack.com",
"https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
"https://www.vandyke.com/products/securecrt/history.txt",
"https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit",
"https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability"
],
"score": 5.9,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in [email protected] and (if CBC is used) the [email protected] MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-354"
},
"CVE-2023-51384": {
"id": "CVE-2023-51384",
"references": [
"http://seclists.org/fulldisclosure/2024/Mar/21",
"https://github.com/openssh/openssh-portable/commit/881d9c6af9da4257c69c327c4e2f1508b2fa754b",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"https://github.com/openssh/openssh-portable/commit/881d9c6af9da4257c69c327c4e2f1508b2fa754b",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2"
],
"score": 5.5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.",
"vector_string": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-2023-51385": {
"id": "CVE-2023-51385",
"references": [
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/26/4",
"https://github.com/openssh/openssh-portable/commit/7ef3787c84b6b524501211b11a26c742f829af1a",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://vin01.github.io/piptagole/ssh/security/openssh/libssh/remote-code-execution/2023/12/20/openssh-proxycommand-libssh-rce.html",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/26/4",
"http://www.openwall.com/lists/oss-security/2025/10/07/1",
"http://www.openwall.com/lists/oss-security/2025/10/12/1",
"https://github.com/openssh/openssh-portable/commit/7ef3787c84b6b524501211b11a26c742f829af1a",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://vin01.github.io/piptagole/ssh/security/openssh/libssh/remote-code-execution/2023/12/20/openssh-proxycommand-libssh-rce.html",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2"
],
"score": 6.5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"weakness": "CWE-78"
},
"CVE-2023-51767": {
"id": "CVE-2023-51767",
"references": [
"https://access.redhat.com/security/cve/CVE-2023-51767",
"https://arxiv.org/abs/2309.02545",
"https://bugzilla.redhat.com/show_bug.cgi?id=2255850",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/auth-passwd.c#L77",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/monitor.c#L878",
"https://security.netapp.com/advisory/ntap-20240125-0006/",
"https://ubuntu.com/security/CVE-2023-51767",
"https://www.openwall.com/lists/oss-security/2025/09/22/1",
"http://www.openwall.com/lists/oss-security/2025/09/22/1",
"http://www.openwall.com/lists/oss-security/2025/09/22/2",
"http://www.openwall.com/lists/oss-security/2025/09/23/1",
"http://www.openwall.com/lists/oss-security/2025/09/23/3",
"http://www.openwall.com/lists/oss-security/2025/09/23/4",
"http://www.openwall.com/lists/oss-security/2025/09/23/5",
"http://www.openwall.com/lists/oss-security/2025/09/24/4",
"http://www.openwall.com/lists/oss-security/2025/09/24/7",
"http://www.openwall.com/lists/oss-security/2025/09/25/2",
"http://www.openwall.com/lists/oss-security/2025/09/25/6",
"http://www.openwall.com/lists/oss-security/2025/09/26/2",
"http://www.openwall.com/lists/oss-security/2025/09/26/4",
"http://www.openwall.com/lists/oss-security/2025/09/27/1",
"http://www.openwall.com/lists/oss-security/2025/09/27/2",
"http://www.openwall.com/lists/oss-security/2025/09/27/3",
"http://www.openwall.com/lists/oss-security/2025/09/27/4",
"http://www.openwall.com/lists/oss-security/2025/09/27/5",
"http://www.openwall.com/lists/oss-security/2025/09/27/6",
"http://www.openwall.com/lists/oss-security/2025/09/27/7",
"http://www.openwall.com/lists/oss-security/2025/09/28/7",
"http://www.openwall.com/lists/oss-security/2025/09/29/1",
"http://www.openwall.com/lists/oss-security/2025/09/29/4",
"http://www.openwall.com/lists/oss-security/2025/09/29/5",
"http://www.openwall.com/lists/oss-security/2025/09/29/6",
"http://www.openwall.com/lists/oss-security/2025/10/01/1",
"http://www.openwall.com/lists/oss-security/2025/10/01/2",
"https://access.redhat.com/security/cve/CVE-2023-51767",
"https://arxiv.org/abs/2309.02545",
"https://bugzilla.redhat.com/show_bug.cgi?id=2255850",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/auth-passwd.c#L77",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/monitor.c#L878",
"https://security.netapp.com/advisory/ntap-20240125-0006/",
"https://ubuntu.com/security/CVE-2023-51767"
],
"score": 7,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "OpenSSH through 10.0, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges. NOTE: this is disputed by the Supplier, who states \"we do not consider it to be the application's responsibility to defend against platform architectural weaknesses.\"",
"vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "NVD-CWE-Other"
}
}
}