182.92.207.65
{
"scan_id": 1770058403,
"ip": "182.92.207.65",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "182.92.0.0/16",
"postal_code": "",
"coordinates": {
"latitude": "39.911",
"longitude": "116.395"
},
"geo_point": "39.911, 116.395",
"locale_code": "en",
"continent": "Asia",
"country_code": "CN",
"country_name": "China",
"city": "Beijing"
},
"location_updated_at": "2026-02-03T08:42:27Z",
"asn": {
"number": "AS37963",
"organization": "Hangzhou Alibaba Advertising Co.,Ltd.",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "182.92.207.0/24",
"organization": "China Internet Network Information Center",
"descr": "China Internet Network Information Center,\nFloor1, Building No.1 C/-Chinese Academy of Sciences,\n4, South 4th Street,\nHaidian District,",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-09T11:27:07Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2026-02-03T08:42:27Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2026-02-03T11:31:00Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2026-02-03T08:42:27Z"
}
],
"services": [
{
"port": 22,
"protocol": "tcp",
"name": "ssh",
"version": "8.0",
"product": "OpenSSH",
"extra_info": "protocol 2.0",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:openbsd:openssh:8.0",
"part": "a",
"vendor": "openbsd",
"product": "openssh",
"version": "8\\.0",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"ssh": {
"banner": "SSH-2.0-OpenSSH_8.0",
"client_to_server_ciphers": [
"[email protected]",
"[email protected]",
"aes256-ctr",
"aes256-cbc",
"[email protected]",
"aes128-ctr",
"aes128-cbc"
],
"client_to_server_compression": [
"none",
"[email protected]"
],
"client_to_server_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha1",
"[email protected]",
"hmac-sha2-512"
],
"host_key_algorithms": [
"rsa-sha2-512",
"rsa-sha2-256",
"ssh-rsa",
"ecdsa-sha2-nistp256",
"ssh-ed25519"
],
"kex_algorithms": [
"curve25519-sha256",
"[email protected]",
"ecdh-sha2-nistp256",
"ecdh-sha2-nistp384",
"ecdh-sha2-nistp521",
"diffie-hellman-group-exchange-sha256",
"diffie-hellman-group14-sha256",
"diffie-hellman-group16-sha512",
"diffie-hellman-group18-sha512",
"diffie-hellman-group-exchange-sha1",
"diffie-hellman-group14-sha1",
"[email protected]"
],
"key": {
"algorithm": "ecdsa-sha2-nistp256",
"fingerprint_sha256": "f14fa603cdfbaefac676cadfa1a04d732374f90e3da8cf3b37eaaab67a461019",
"raw": "AAAAE2VjZHNhLXNoYTItbmlzdHAyNTYAAAAIbmlzdHAyNTYAAABBBKX928WuoV0Tpd02jTZIwEqEjlOYGgDEzkRO2HnX9FczPglmomKhfqQGwuhfKQTZBOsrpliOuOSXGAfMtayFZVU="
},
"server_to_client_ciphers": [
"[email protected]",
"[email protected]",
"aes256-ctr",
"aes256-cbc",
"[email protected]",
"aes128-ctr",
"aes128-cbc"
],
"server_to_client_compression": [
"none",
"[email protected]"
],
"server_to_client_macs": [
"[email protected]",
"[email protected]",
"[email protected]",
"[email protected]",
"hmac-sha2-256",
"hmac-sha1",
"[email protected]",
"hmac-sha2-512"
],
"software": "OpenSSH_8.0",
"version": "2.0"
}
},
"cve": [
{
"id": "CVE-2007-2768",
"score": 4.3,
"severity": "medium"
},
{
"id": "CVE-2008-3844",
"score": 9.3,
"severity": "high"
},
{
"id": "CVE-2016-20012",
"score": 5.3,
"severity": "medium"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-02-02T19:45:17.68Z"
},
{
"port": 80,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "nginx",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:igor_sysoev:nginx",
"part": "a",
"vendor": "igor_sysoev",
"product": "nginx",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<!doctype html>\n<html>\n<head>\n<meta charset=\"utf-8\">\n<title>没有找到站点</title>\n<style>\n*{margin:0;padding:0;color:#444}\nbody{font-size:14px;font-family:\"宋体\"}\n.main{width:600px;margin:10% auto;}\n.title{background: #20a53a;color: #fff;font-size: 16px;height: 40px;line-height: 40px;padding-left: 20px;}\n.content{background-color:#f3f7f9; height:300px;border:1px dashed #c6d9b6;padding:20px}\n.t1{border-bottom: 1px dashed #c6d9b6;color: #ff4000;font-weight: bold; margin: 0 0 20px; padding-bottom: 18px;}\n.t2{margin-bottom:8px; font-weight:bold}\nol{margin:0 0 20px 22px;padding:0;}\nol li{line-height:30px}\n</style>\n</head>\n\n<body>\n\t<div class=\"main\">\n\t\t<div class=\"title\">没有找到站点</div>\n\t\t<div class=\"content\">\n\t\t\t<p class=\"t1\">您的请求在Web服务器中没有找到对应的站点!</p>\n\t\t\t<p class=\"t2\">可能原因:</p>\n\t\t\t<ol>\n\t\t\t\t<li>您没有将此域名或IP绑定到对应站点!</li>\n\t\t\t\t<li>配置文件未生效!</li>\n\t\t\t</ol>\n\t\t\t<p class=\"t2\">如何解决:</p>\n\t\t\t<ol>\n\t\t\t\t<li>检查是否已经绑定到对应站点,若确认已绑定,请尝试重载Web服务;</li>\n\t\t\t\t<li>检查端口是否正确;</li>\n\t\t\t\t<li>若您使用了CDN产品,请尝试清除CDN缓存;</li>\n\t\t\t\t<li>普通网站访客,请联系网站管理员;</li>\n\t\t\t</ol>\n\t\t</div>\n\t</div>\n</body>\n</html>\n",
"body_murmur": 617769728,
"body_sha256": "cdf9d8eee8c4fe967fac3aa9218a7227647ae7aaaa4221c688e1aab7a9180f69",
"component": [
"Nginx"
],
"content_length": -1,
"headers": {
"connection": [
"keep-alive"
],
"content_type": [
"text/html"
],
"date": [
"Sat, 31 Jan 2026 12:10:03 GMT"
],
"etag": [
"W/\"59005463-52e\""
],
"last_modified": [
"Wed, 26 Apr 2017 08:03:47 GMT"
],
"server": [
"nginx"
],
"vary": [
"Accept-Encoding"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "182.92.207.65",
"path": "",
"scheme": "http"
}
},
"status_code": 200,
"title": "没有找到站点",
"transfer_encoding": [
"chunked"
]
}
},
"url": "http://182.92.207.65/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-01-31T12:10:04.572Z"
},
{
"port": 110,
"protocol": "tcp",
"name": "pop3",
"version": "",
"product": "Dovecot pop3d",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"pop3": {
"banner": "+OK Dovecot (Debian) ready.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_key_id": "e0d86a1e695f814a8f8c651c17dbd384cbe16fe3",
"basic_constraints": {
"is_ca": true
},
"subject_key_id": "e0d86a1e695f814a8f8c651c17dbd384cbe16fe3"
},
"fingerprint_md5": "A9551284851023EBDACE580F71B7CAA1",
"fingerprint_sha1": "D72EED80DC972798D1D3610D31F77AFB2A9C5798",
"fingerprint_sha256": "F4ECA67CB49C73FBBB80F36ECC209A7E0C614E7FDDD9B304E8AE8F0E0BF5C4C2",
"issuer": {
"common_name": [
"*.billionmail.com"
],
"country": [
"US"
],
"locality": [
"City"
],
"organization": [
"billionmail.com"
],
"organizational_unit": [
"billionmail.com"
],
"province": [
"State"
]
},
"issuer_dn": "/C=US/ST=State/L=City/O=billionmail.com/OU=billionmail.com/CN=*.billionmail.com",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "561451858052079299489929665204577431333698880460",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "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"
},
"subject": {
"common_name": [
"*.billionmail.com"
],
"country": [
"US"
],
"locality": [
"City"
],
"organization": [
"billionmail.com"
],
"organizational_unit": [
"billionmail.com"
],
"province": [
"State"
]
},
"subject_alt_name": {
"dns_names": [
"*.billionmail.com"
],
"extended_dns_names": [
{
"domain": "billionmail",
"fld": "billionmail.com",
"subdomain": "*",
"tld": "com"
}
]
},
"subject_dn": "/C=US/ST=State/L=City/O=billionmail.com/OU=billionmail.com/CN=*.billionmail.com",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "5070992bdf1caef6a8f87bff2652db66715eb7550933aa180836663eb2503c4f",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "MHhhZmUyZjlmNGUwZDgwYmNlODU5MjJlMjU5Mjk2NTgwNDZiMGE2NjNmNDgzMTdiNjM2OGE1ZjI4YWZkMzA1ZTQwNmFhNDQ3NjYzZWQ1MWU4NDAxYzgyZjk1ODUzZjliNjY4YjJkOTQzZDkyNzg0YmZiOTI1MTU1NDZhOWIyZGJhY2ExNDI2NDNjZDgwMGVkNGQwZmNjMzQwNmU4MTdmZDZhOTc0YzI1MzBlMjY4M2YxOGI2NmQ3YjBjNWM3NjQ3NzFjMDY3NTRjNzY3OGI1YTk2NWYzNmQ2YTc4NzI0YjdkMTgwZmMzNjhlOTgzZDQ1YzcyYTBlMDAwMmUyOWIxZWY4NzVkY2M3OTE2M2E1YjM1NTZkNWM0ZGQ5ZTk2N2Q1YjMxY2YzMjBkNmM3NzdiNmRjMzExMWEwMTc0M2I4NGVlZGE0ZDA0MjgyMjIwYzhlMDA4OTIzYTQ3OWI3NDhhNDRjODFlMGY1ZTU4YjFhMTFlM2UxMmJjMmJlZDg0NTY2YjE0MzVlMzUwZDExMjZkMTdjOTc0ZDhmYjQzY2YyMmU4MzIzM2VhNWE0OTI2NWIxOTBlMzE3MzMyOWM0NmU3OWNkNjZhYWFhMzExYzNhODkwM2E5MzNmZjEwNzI1NGQ0MTE4YzE5NGVlZTg1ZmFjNzdhOWVjYzQyMGYxMzU4OGVmOQ=="
}
},
"tbs_fingerprint": "1e6cc410375f93e1e6a9e7b937b43247e5cbba41031d4f9cc462e76dd204b52c",
"validation_level": "OV",
"validity": {
"length_seconds": 315360000,
"not_after": "2035-05-06T03:31:12",
"not_before": "2025-05-08T03:31:12"
},
"version": 2
},
"fingerprint_sha256": "F4ECA67CB49C73FBBB80F36ECC209A7E0C614E7FDDD9B304E8AE8F0E0BF5C4C2",
"precert": false,
"raw": "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",
"tags": [
"ov",
"trusted",
"self_signed",
"root"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-01-31T18:56:02.62Z"
},
{
"port": 143,
"protocol": "tcp",
"name": "imap",
"version": "",
"product": "Dovecot imapd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"imap": {
"banner": "* OK [CAPABILITY IMAP4rev1 SASL-IR LOGIN-REFERRALS ID ENABLE IDLE LITERAL+ STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot (Debian) ready.\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_key_id": "e0d86a1e695f814a8f8c651c17dbd384cbe16fe3",
"basic_constraints": {
"is_ca": true
},
"subject_key_id": "e0d86a1e695f814a8f8c651c17dbd384cbe16fe3"
},
"fingerprint_md5": "A9551284851023EBDACE580F71B7CAA1",
"fingerprint_sha1": "D72EED80DC972798D1D3610D31F77AFB2A9C5798",
"fingerprint_sha256": "F4ECA67CB49C73FBBB80F36ECC209A7E0C614E7FDDD9B304E8AE8F0E0BF5C4C2",
"issuer": {
"common_name": [
"*.billionmail.com"
],
"country": [
"US"
],
"locality": [
"City"
],
"organization": [
"billionmail.com"
],
"organizational_unit": [
"billionmail.com"
],
"province": [
"State"
]
},
"issuer_dn": "/C=US/ST=State/L=City/O=billionmail.com/OU=billionmail.com/CN=*.billionmail.com",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "561451858052079299489929665204577431333698880460",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "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"
},
"subject": {
"common_name": [
"*.billionmail.com"
],
"country": [
"US"
],
"locality": [
"City"
],
"organization": [
"billionmail.com"
],
"organizational_unit": [
"billionmail.com"
],
"province": [
"State"
]
},
"subject_alt_name": {
"dns_names": [
"*.billionmail.com"
],
"extended_dns_names": [
{
"domain": "billionmail",
"fld": "billionmail.com",
"subdomain": "*",
"tld": "com"
}
]
},
"subject_dn": "/C=US/ST=State/L=City/O=billionmail.com/OU=billionmail.com/CN=*.billionmail.com",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "5070992bdf1caef6a8f87bff2652db66715eb7550933aa180836663eb2503c4f",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "MHhhZmUyZjlmNGUwZDgwYmNlODU5MjJlMjU5Mjk2NTgwNDZiMGE2NjNmNDgzMTdiNjM2OGE1ZjI4YWZkMzA1ZTQwNmFhNDQ3NjYzZWQ1MWU4NDAxYzgyZjk1ODUzZjliNjY4YjJkOTQzZDkyNzg0YmZiOTI1MTU1NDZhOWIyZGJhY2ExNDI2NDNjZDgwMGVkNGQwZmNjMzQwNmU4MTdmZDZhOTc0YzI1MzBlMjY4M2YxOGI2NmQ3YjBjNWM3NjQ3NzFjMDY3NTRjNzY3OGI1YTk2NWYzNmQ2YTc4NzI0YjdkMTgwZmMzNjhlOTgzZDQ1YzcyYTBlMDAwMmUyOWIxZWY4NzVkY2M3OTE2M2E1YjM1NTZkNWM0ZGQ5ZTk2N2Q1YjMxY2YzMjBkNmM3NzdiNmRjMzExMWEwMTc0M2I4NGVlZGE0ZDA0MjgyMjIwYzhlMDA4OTIzYTQ3OWI3NDhhNDRjODFlMGY1ZTU4YjFhMTFlM2UxMmJjMmJlZDg0NTY2YjE0MzVlMzUwZDExMjZkMTdjOTc0ZDhmYjQzY2YyMmU4MzIzM2VhNWE0OTI2NWIxOTBlMzE3MzMyOWM0NmU3OWNkNjZhYWFhMzExYzNhODkwM2E5MzNmZjEwNzI1NGQ0MTE4YzE5NGVlZTg1ZmFjNzdhOWVjYzQyMGYxMzU4OGVmOQ=="
}
},
"tbs_fingerprint": "1e6cc410375f93e1e6a9e7b937b43247e5cbba41031d4f9cc462e76dd204b52c",
"validation_level": "OV",
"validity": {
"length_seconds": 315360000,
"not_after": "2035-05-06T03:31:12",
"not_before": "2025-05-08T03:31:12"
},
"version": 2
},
"fingerprint_sha256": "F4ECA67CB49C73FBBB80F36ECC209A7E0C614E7FDDD9B304E8AE8F0E0BF5C4C2",
"precert": false,
"raw": "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",
"tags": [
"ov",
"trusted",
"self_signed",
"root"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-02-05T10:09:42.362Z"
},
{
"port": 443,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "nginx",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:igor_sysoev:nginx",
"part": "a",
"vendor": "igor_sysoev",
"product": "nginx",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<!DOCTYPE html><html lang=\"zh-cmn-Hans\"><head><meta name=\"referrer\" content=\"no-referrer\"><meta charset=\"utf-8\"><meta http-equiv=\"X-UA-Compatible\" content=\"IE=edge\"><meta name=\"viewport\" content=\"width=device-width,initial-scale=1\"><link rel=\"icon\" href=\"/admin/logo.png\"><title></title><style>.first-loading-wrp {\n display: flex;\n justify-content: center;\n align-items: center;\n flex-direction: column;\n min-height: 420px;\n height: 100%\n }\n\n .first-loading-wrp>h1 {\n font-size: 128px;\n color: transparent\n }\n\n .first-loading-wrp .loading-wrp {\n padding: 98px;\n display: flex;\n justify-content: center;\n align-items: center\n }\n\n .dot {\n animation: antRotate 1.2s infinite linear;\n transform: rotate(45deg);\n position: relative;\n display: inline-block;\n font-size: 32px;\n width: 32px;\n height: 32px;\n box-sizing: border-box\n }\n\n .dot i {\n width: 14px;\n height: 14px;\n position: absolute;\n display: block;\n background-color: #1890ff;\n border-radius: 100%;\n transform: scale(.75);\n transform-origin: 50% 50%;\n opacity: .3;\n animation: antSpinMove 1s infinite linear alternate\n }\n\n .dot i:nth-child(1) {\n top: 0;\n left: 0\n }\n\n .dot i:nth-child(2) {\n top: 0;\n right: 0;\n -webkit-animation-delay: .4s;\n animation-delay: .4s\n }\n\n .dot i:nth-child(3) {\n right: 0;\n bottom: 0;\n -webkit-animation-delay: .8s;\n animation-delay: .8s\n }\n\n .dot i:nth-child(4) {\n bottom: 0;\n left: 0;\n -webkit-animation-delay: 1.2s;\n animation-delay: 1.2s\n }\n\n @keyframes antRotate {\n to {\n -webkit-transform: rotate(405deg);\n transform: rotate(405deg)\n }\n }\n\n @-webkit-keyframes antRotate {\n to {\n -webkit-transform: rotate(405deg);\n transform: rotate(405deg)\n }\n }\n\n @keyframes antSpinMove {\n to {\n opacity: 1\n }\n }\n\n @-webkit-keyframes antSpinMove {\n to {\n opacity: 1\n }\n }</style><link href=\"/admin/css/chunk-17a078e2.04a9e49c.css\" rel=\"prefetch\"><link href=\"/admin/css/chunk-8aeab670.35edc7ae.css\" rel=\"prefetch\"><link href=\"/admin/css/fail.f7ce55c6.css\" rel=\"prefetch\"><link href=\"/admin/js/chunk-17a078e2.9325067b.js\" rel=\"prefetch\"><link href=\"/admin/js/chunk-8aeab670.1e00e612.js\" rel=\"prefetch\"><link href=\"/admin/js/fail.4e21d061.js\" rel=\"prefetch\"><link href=\"/admin/css/app.054bf566.css\" rel=\"preload\" as=\"style\"><link href=\"/admin/css/chunk-vendors.1c793d9d.css\" rel=\"preload\" as=\"style\"><link href=\"/admin/js/app.49e6bfc3.js\" rel=\"preload\" as=\"script\"><link href=\"/admin/js/chunk-vendors.ebcef7dd.js\" rel=\"preload\" as=\"script\"><link href=\"/admin/css/chunk-vendors.1c793d9d.css\" rel=\"stylesheet\"><link href=\"/admin/css/app.054bf566.css\" rel=\"stylesheet\"></head><body><noscript><strong>很抱歉,如果不启用JavaScript,本系统无法正常工作。 请启用它以继续。</strong></noscript><div id=\"app\"><div class=\"first-loading-wrp\"><h1></h1><div class=\"loading-wrp\"><span class=\"dot dot-spin\"><i></i><i></i><i></i><i></i></span></div></div></div><script src=\"\"></script><script src=\"./vue.runtime.min.js\"></script><script src=\"./moment.js\"></script><script src=\"/admin/js/chunk-vendors.ebcef7dd.js\"></script><script src=\"/admin/js/app.49e6bfc3.js\"></script></body></html>",
"body_murmur": 1328195160,
"body_sha256": "058ed2e273f0633b122fc4c5b4390787a661dad9a6819785f5f1339fad837cc8",
"component": [
"Nginx"
],
"content_length": -1,
"favicon": {
"md5_hash": "c924155285cdba2f57cbd751674c1bb0",
"murmur_hash": -457709274,
"path": "https://182.92.207.65:443/admin/logo.png",
"size": 20228
},
"headers": {
"alt_svc": [
"quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\""
],
"connection": [
"keep-alive"
],
"content_type": [
"text/html"
],
"date": [
"Mon, 26 Jan 2026 19:16:49 GMT"
],
"etag": [
"W/\"6870fc1e-d74\""
],
"last_modified": [
"Fri, 11 Jul 2025 11:57:18 GMT"
],
"server": [
"nginx"
],
"strict_transport_security": [
"max-age=31536000"
],
"vary": [
"Accept-Encoding"
]
},
"protocol": "HTTP/1.1",
"redirects": [
{
"body": "<html>\r\n<head><title>302 Found</title></head>\r\n<body>\r\n<center><h1>302 Found</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
"body_murmur": -23674247,
"body_sha256": "753e0dd54f28c4f7009b9c0b18a68aed175416bd8b7d134858264586eaac56f0",
"content_length": 138,
"headers": {
"alt_svc": [
"quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\""
],
"content_length": [
"138"
],
"content_type": [
"text/html"
],
"date": [
"Mon, 26 Jan 2026 19:16:48 GMT"
],
"location": [
"https://182.92.207.65/"
],
"server": [
"nginx"
],
"strict_transport_security": [
"max-age=31536000"
]
},
"location": "https://182.92.207.65/",
"protocol": "HTTP/1.1",
"status_code": 302,
"status_line": "302 Moved Temporarily"
},
{
"content_length": -1,
"headers": {
"access_control_allow_origin": [
"*"
],
"alt_svc": [
"quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\""
],
"connection": [
"keep-alive"
],
"content_type": [
"text/html; charset=UTF-8"
],
"date": [
"Mon, 26 Jan 2026 19:16:49 GMT"
],
"location": [
"https://182.92.207.65/admin"
],
"server": [
"nginx"
],
"strict_transport_security": [
"max-age=31536000"
],
"unknown": [
{
"key": "access_control_allow_headers",
"value": [
"X-Requested-With, Content-Type, Origin, Authorization, Accept, Access-Token, Accept-Encoding"
]
},
{
"key": "access_control_allow_methods",
"value": [
"GET, POST, PUT, DELETE, HEAD, OPTIONS"
]
},
{
"key": "access_control_allow_credentials",
"value": [
"false"
]
}
]
},
"location": "https://182.92.207.65/admin",
"protocol": "HTTP/1.1",
"status_code": 302,
"status_line": "302 Found"
},
{
"body": "<html>\r\n<head><title>301 Moved Permanently</title></head>\r\n<body>\r\n<center><h1>301 Moved Permanently</h1></center>\r\n<hr><center>nginx</center>\r\n</body>\r\n</html>\r\n",
"body_murmur": -2100514759,
"body_sha256": "9e17cb15dd75bbbd5dbb984eda674863c3b10ab72613cf8a39a00c3e11a8492a",
"content_length": 162,
"headers": {
"alt_svc": [
"quic=\":443\"; h3=\":443\"; h3-29=\":443\"; h3-27=\":443\";h3-25=\":443\"; h3-T050=\":443\"; h3-Q050=\":443\";h3-Q049=\":443\";h3-Q048=\":443\"; h3-Q046=\":443\"; h3-Q043=\":443\""
],
"connection": [
"keep-alive"
],
"content_length": [
"162"
],
"content_type": [
"text/html"
],
"date": [
"Mon, 26 Jan 2026 19:16:49 GMT"
],
"location": [
"https://182.92.207.65/admin/"
],
"server": [
"nginx"
],
"strict_transport_security": [
"max-age=31536000"
]
},
"location": "https://182.92.207.65/admin/",
"protocol": "HTTP/1.1",
"status_code": 301,
"status_line": "301 Moved Permanently"
}
],
"request": {
"headers": {
"accept": [
"*/*"
],
"referer": [
"https://182.92.207.65/admin"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "182.92.207.65",
"path": "/admin/",
"scheme": "https"
}
},
"status_code": 200,
"transfer_encoding": [
"chunked"
]
},
"tls": {
"certificate": {
"extensions": {
"authority_info_access": {
"issuer_urls": [
"http://r10.i.lencr.org/"
]
},
"authority_key_id": "bbbcc347a5e4bca9c6c3a4720c108da235e1c8e8",
"basic_constraints": {
"is_ca": true
},
"certificate_policies": [
{
"id": "2.23.140.1.2.1"
}
],
"crl_distribution_points": [
"http://r10.c.lencr.org/4.crl"
],
"ct_precert_scts": "Signed Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : 0D:E1:F2:30:2B:D3:0D:C1:40:62:12:09:EA:55:2E:FC:\n 47:74:7C:B1:D7:E9:30:EF:0E:42:1E:B4:7E:4E:AA:34\n Timestamp : Aug 14 07:55:11.932 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:44:02:20:18:CA:6B:13:D5:E2:DE:0B:3B:25:2C:B4:\n 9A:12:3F:95:95:DE:84:A5:CB:3A:CB:C3:5E:32:85:F6:\n C9:0C:55:13:02:20:19:92:13:B9:B2:16:D0:46:6C:F3:\n 7D:6D:69:A8:CA:82:FB:2C:10:28:BF:01:8F:F8:06:BE:\n CE:A5:6E:98:E7:57\nSigned Certificate Timestamp:\n Version : v1 (0x0)\n Log ID : CC:FB:0F:6A:85:71:09:65:FE:95:9B:53:CE:E9:B2:7C:\n 22:E9:85:5C:0D:97:8D:B6:A9:7E:54:C0:FE:4C:0D:B0\n Timestamp : Aug 14 07:55:11.945 2025 GMT\n Extensions: none\n Signature : ecdsa-with-SHA256\n 30:44:02:20:45:8B:0A:8A:2C:C8:1C:A1:9D:E4:4E:60:\n C2:B9:1E:EB:E8:E1:C1:5B:7F:A3:B0:82:82:C8:E8:AA:\n A5:84:F7:BB:02:20:54:04:76:D2:41:9E:5C:BF:D7:AA:\n F3:8B:93:B5:A5:36:88:71:60:A4:FE:5C:0D:03:92:59:\n 04:9E:27:10:AE:93",
"extended_key_usage": {
"any": false,
"apple_code_signing": false,
"apple_code_signing_development": false,
"apple_code_signing_third_party": false,
"apple_crypto_development_env": false,
"apple_crypto_env": false,
"apple_crypto_maintenance_env": false,
"apple_crypto_production_env": false,
"apple_crypto_qos": false,
"apple_crypto_test_env": false,
"apple_crypto_tier0_qos": false,
"apple_crypto_tier1_qos": false,
"apple_crypto_tier2_qos": false,
"apple_crypto_tier3_qos": false,
"apple_ichat_encryption": false,
"apple_ichat_signing": false,
"apple_resource_signing": false,
"apple_software_update_signing": false,
"apple_system_identity": false,
"client_auth": true,
"code_signing": false,
"dvcs": false,
"eap_over_lan": false,
"eap_over_ppp": false,
"email_protection": false,
"ipsec_end_system": false,
"ipsec_intermediate_system_usage": false,
"ipsec_tunnel": false,
"ipsec_user": false,
"microsoft_ca_exchange": false,
"microsoft_cert_trust_list_signing": false,
"microsoft_csp_signature": false,
"microsoft_document_signing": false,
"microsoft_drm": false,
"microsoft_drm_individualization": false,
"microsoft_efs_recovery": false,
"microsoft_embedded_nt_crypto": false,
"microsoft_encrypted_file_system": false,
"microsoft_enrollment_agent": false,
"microsoft_kernel_mode_code_signing": false,
"microsoft_key_recovery_21": false,
"microsoft_key_recovery_3": false,
"microsoft_license_server": false,
"microsoft_licenses": false,
"microsoft_lifetime_signing": false,
"microsoft_mobile_device_software": false,
"microsoft_nt5_crypto": false,
"microsoft_oem_whql_crypto": false,
"microsoft_qualified_subordinate": false,
"microsoft_root_list_signer": false,
"microsoft_server_gated_crypto": false,
"microsoft_sgc_serialized": false,
"microsoft_smart_display": false,
"microsoft_smartcard_logon": false,
"microsoft_system_health": false,
"microsoft_system_health_loophole": false,
"microsoft_timestamp_signing": false,
"microsoft_whql_crypto": false,
"netscape_server_gated_crypto": false,
"ocsp_signing": false,
"sbgp_cert_aa_service_auth": false,
"server_auth": true,
"time_stamping": false
},
"key_usage": {
"certificate_sign": false,
"content_commitment": false,
"crl_sign": false,
"data_encipherment": false,
"decipher_only": false,
"digital_signature": true,
"encipher_only": false,
"key_agreement": false,
"key_encipherment": true
},
"subject_alt_name": {
"dns_names": [
"2.juhuilm.cn"
]
},
"subject_key_id": "5fd28c94626a7a34fbce1151ef299eb725d0f9d3"
},
"fingerprint_md5": "3960273892229593DE241992C467B17B",
"fingerprint_sha1": "F8580E3CD1C3DA441DE41EBBFD75B028A5871B5D",
"fingerprint_sha256": "9F939C77F28D6BBBA155F90578CFC3A18724908B4C58C850510E7D067FBA076F",
"issuer": {
"common_name": [
"R10"
],
"country": [
"US"
],
"organization": [
"Let's Encrypt"
]
},
"issuer_dn": "/C=US/O=Let's Encrypt/CN=R10",
"jarm": "3fd3fd0003fd3fd21c42d42d000000bdfc58c9a46434368cf60aa440385763",
"redacted": false,
"revocation": {
"crl": {
"next_update": "2026-02-16T00:52:14",
"reason": "UNKNOWN",
"revoked": false
},
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "517869906651782250336820037180056502809219",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"signed_certificate_timestamps": [
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "0de1f2302bd30dc140621209ea552efc47747cb1d7e930ef0e421eb47e4eaa34",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "3044022018ca6b13d5e2de0b3b252cb49a123f9595de84a5cb3acbc35e3285f6c90c55130220199213b9b216d0466cf37d6d69a8ca82fb2c1028bf018ff806becea56e98e757"
},
"timestamp": "2025-08-14T07:55:11.932000",
"version": "v1"
},
{
"entry_type": "PRE_CERTIFICATE",
"log_id": "ccfb0f6a85710965fe959b53cee9b27c22e9855c0d978db6a97e54c0fe4c0db0",
"signature": {
"algorithm": "ECDSA",
"hash_algorithm": "SHA256",
"value": "30440220458b0a8a2cc81ca19de44e60c2b91eebe8e1c15b7fa3b08282c8e8aaa584f7bb0220540476d2419e5cbfd7aaf38b93b5a536887160a4fe5c0d039259049e2710ae93"
},
"timestamp": "2025-08-14T07:55:11.945000",
"version": "v1"
}
],
"signed_certificate_timestamps_oid": "1.3.6.1.4.1.11129.2.4.2",
"subject": {
"common_name": [
"2.juhuilm.cn"
]
},
"subject_alt_name": {
"dns_names": [
"2.juhuilm.cn"
],
"extended_dns_names": [
{
"domain": "juhuilm",
"fld": "juhuilm.cn",
"subdomain": "2",
"tld": "cn"
}
]
},
"subject_dn": "/CN=2.juhuilm.cn",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "6450aba78f66d2a680c1640a7384fbe0fdf0d98ed992f1d412f8f78b6dbefbc0",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "1504de87318f59ea0ca7dc28ff98f2a67c720dc4210466f3dcbd41ab7dd17bec",
"tbs_noct_fingerprint": "564e21a37cd1abf5d187c0be62b520bb6f00226080e54bac932a311b01c42678",
"validation_level": "DV",
"validity": {
"length_seconds": 7775999,
"not_after": "2025-11-12T06:56:40",
"not_before": "2025-08-14T06:56:41"
},
"version": 2
},
"fingerprint_sha256": "9F939C77F28D6BBBA155F90578CFC3A18724908B4C58C850510E7D067FBA076F",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"url": "https://182.92.207.65/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-02-07T00:55:46.901Z"
},
{
"port": 465,
"protocol": "tcp",
"name": "smtp",
"version": "",
"product": "Postfix smtpd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:postfix:postfix",
"part": "a",
"vendor": "postfix",
"product": "postfix",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-02-01T13:59:09.086Z"
},
{
"port": 587,
"protocol": "tcp",
"name": "smtp",
"version": "",
"product": "Postfix smtpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:postfix:postfix",
"part": "a",
"vendor": "postfix",
"product": "postfix",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smtp": {
"banner": "220 localhost ESMTP PostBillionMail\r\n"
},
"tls": {
"certificate": {
"extensions": {
"authority_key_id": "e0d86a1e695f814a8f8c651c17dbd384cbe16fe3",
"basic_constraints": {
"is_ca": true
},
"subject_key_id": "e0d86a1e695f814a8f8c651c17dbd384cbe16fe3"
},
"fingerprint_md5": "A9551284851023EBDACE580F71B7CAA1",
"fingerprint_sha1": "D72EED80DC972798D1D3610D31F77AFB2A9C5798",
"fingerprint_sha256": "F4ECA67CB49C73FBBB80F36ECC209A7E0C614E7FDDD9B304E8AE8F0E0BF5C4C2",
"issuer": {
"common_name": [
"*.billionmail.com"
],
"country": [
"US"
],
"locality": [
"City"
],
"organization": [
"billionmail.com"
],
"organizational_unit": [
"billionmail.com"
],
"province": [
"State"
]
},
"issuer_dn": "/C=US/ST=State/L=City/O=billionmail.com/OU=billionmail.com/CN=*.billionmail.com",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "561451858052079299489929665204577431333698880460",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "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"
},
"subject": {
"common_name": [
"*.billionmail.com"
],
"country": [
"US"
],
"locality": [
"City"
],
"organization": [
"billionmail.com"
],
"organizational_unit": [
"billionmail.com"
],
"province": [
"State"
]
},
"subject_alt_name": {
"dns_names": [
"*.billionmail.com"
],
"extended_dns_names": [
{
"domain": "billionmail",
"fld": "billionmail.com",
"subdomain": "*",
"tld": "com"
}
]
},
"subject_dn": "/C=US/ST=State/L=City/O=billionmail.com/OU=billionmail.com/CN=*.billionmail.com",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "5070992bdf1caef6a8f87bff2652db66715eb7550933aa180836663eb2503c4f",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "1e6cc410375f93e1e6a9e7b937b43247e5cbba41031d4f9cc462e76dd204b52c",
"validation_level": "OV",
"validity": {
"length_seconds": 315360000,
"not_after": "2035-05-06T03:31:12",
"not_before": "2025-05-08T03:31:12"
},
"version": 2
},
"fingerprint_sha256": "F4ECA67CB49C73FBBB80F36ECC209A7E0C614E7FDDD9B304E8AE8F0E0BF5C4C2",
"precert": false,
"raw": "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",
"tags": [
"ov",
"trusted",
"self_signed",
"root"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-01-24T16:45:15.488Z"
},
{
"port": 993,
"protocol": "tcp",
"name": "imap",
"version": "",
"product": "Dovecot imapd",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-02-01T15:26:28.783Z"
},
{
"port": 995,
"protocol": "tcp",
"name": "pop3",
"version": "",
"product": "Dovecot pop3d",
"extra_info": "",
"tunnel": "ssl",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-02-04T03:01:15.741Z"
},
{
"port": 3306,
"protocol": "tcp",
"name": "mysql",
"version": "5.7.40-log",
"product": "MySQL",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:mysql:mysql:5.7.40-log",
"part": "a",
"vendor": "mysql",
"product": "mysql",
"version": "5\\.7\\.40\\-log",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"mysql": {
"capability_flags": {
"CLIENT_CAN_HANDLE_EXPIRED_PASSWORDS": true,
"CLIENT_COMPRESS": true,
"CLIENT_CONNECT_ATTRS": true,
"CLIENT_CONNECT_WITH_DB": true,
"CLIENT_DEPRECATED_EOF": true,
"CLIENT_FOUND_ROWS": true,
"CLIENT_IGNORE_SIGPIPE": true,
"CLIENT_IGNORE_SPACE": true,
"CLIENT_INTERACTIVE": true,
"CLIENT_LOCAL_FILES": true,
"CLIENT_LONG_FLAG": true,
"CLIENT_LONG_PASSWORD": true,
"CLIENT_MULTI_RESULTS": true,
"CLIENT_MULTI_STATEMENTS": true,
"CLIENT_NO_SCHEMA": true,
"CLIENT_ODBC": true,
"CLIENT_PLUGIN_AUTH": true,
"CLIENT_PLUGIN_AUTH_LEN_ENC_CLIENT_DATA": true,
"CLIENT_PROTOCOL_41": true,
"CLIENT_PS_MULTI_RESULTS": true,
"CLIENT_RESERVED": true,
"CLIENT_SECURE_CONNECTION": true,
"CLIENT_SESSION_TRACK": true,
"CLIENT_SSL": true,
"CLIENT_TRANSACTIONS": true
},
"protocol_version": 10,
"version": "5.7.40-log"
},
"tls": {
"certificate": {
"extensions": {
"basic_constraints": {
"is_ca": true
}
},
"fingerprint_md5": "983E26C55A73646BDE51B11625B901D0",
"fingerprint_sha1": "5F66A74F3731484C4418239F162AAD5BDC9D1528",
"fingerprint_sha256": "59028E1BEEB68386A713F2EA69DB4F2A272847CB1B9246C39F9CC080C3862E4F",
"issuer": {
"common_name": [
"MySQL_Server_5.7.40_Auto_Generated_CA_Certificate"
]
},
"issuer_dn": "/CN=MySQL_Server_5.7.40_Auto_Generated_CA_Certificate",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "2",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": false,
"value": "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"
},
"subject": {
"common_name": [
"MySQL_Server_5.7.40_Auto_Generated_Server_Certificate"
]
},
"subject_alt_name": {
"dns_names": [
"MySQL_Server_5.7.40_Auto_Generated_Server_Certificate"
],
"extended_dns_names": []
},
"subject_dn": "/CN=MySQL_Server_5.7.40_Auto_Generated_Server_Certificate",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "35c4621a7979ce17c0691dfe99dae030f9e0dd3395ece6edfb04b12845ac0d0e",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 2048,
"modulus": "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"
}
},
"tbs_fingerprint": "dd6211c0c34c11bc53aca77318f7697ac0cea179bcdc512089477e715ab28f64",
"validation_level": "DV",
"validity": {
"length_seconds": 315360000,
"not_after": "2035-05-13T10:10:33",
"not_before": "2025-05-15T10:10:33"
},
"version": 2
},
"fingerprint_sha256": "59028E1BEEB68386A713F2EA69DB4F2A272847CB1B9246C39F9CC080C3862E4F",
"precert": false,
"raw": "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",
"tags": [
"dv",
"trusted"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2026-02-04T02:31:37.158Z"
}
],
"services_hash": "04dd7f210fff85b896097e90ba71d8cef3aa59477b64cfb878e0119074fa553e",
"last_updated_at": "2026-02-07T00:55:46.901Z",
"banner": [
"mysql",
"tls",
"ssh",
"http",
"pop3",
"imap",
"smtp"
],
"is_vuln": true,
"cveDetails": {
"CVE-2007-2768": {
"id": "CVE-2007-2768",
"references": [
"http://archives.neohapsis.com/archives/fulldisclosure/2007-04/0635.html",
"http://www.osvdb.org/34601",
"https://security.netapp.com/advisory/ntap-20191107-0002/",
"http://archives.neohapsis.com/archives/fulldisclosure/2007-04/0635.html",
"http://www.osvdb.org/34601",
"https://security.netapp.com/advisory/ntap-20191107-0002/"
],
"score": 4.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user accounts, which displays a different response if the user account exists and is configured to use one-time passwords (OTP), a similar issue to CVE-2007-2243.",
"vector_string": "AV:N/AC:M/Au:N/C:P/I:N/A:N",
"weakness": "CWE-200"
},
"CVE-2008-3844": {
"id": "CVE-2008-3844",
"references": [
"http://secunia.com/advisories/31575",
"http://secunia.com/advisories/32241",
"http://securitytracker.com/id?1020730",
"http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm",
"http://www.redhat.com/security/data/openssh-blacklist.html",
"http://www.redhat.com/support/errata/RHSA-2008-0855.html",
"http://www.securityfocus.com/bid/30794",
"http://www.vupen.com/english/advisories/2008/2821",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/44747",
"http://secunia.com/advisories/31575",
"http://secunia.com/advisories/32241",
"http://securitytracker.com/id?1020730",
"http://support.avaya.com/elmodocs2/security/ASA-2008-399.htm",
"http://www.redhat.com/security/data/openssh-blacklist.html",
"http://www.redhat.com/support/errata/RHSA-2008-0855.html",
"http://www.securityfocus.com/bid/30794",
"http://www.vupen.com/english/advisories/2008/2821",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/44747"
],
"score": 9.3,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain an externally introduced modification (Trojan Horse) that allows the package authors to have an unknown impact. NOTE: since the malicious packages were not distributed from any official Red Hat sources, the scope of this issue is restricted to users who may have obtained these packages through unofficial distribution points. As of 20080827, no unofficial distributions of this software are known.",
"vector_string": "AV:N/AC:M/Au:N/C:C/I:C/A:C",
"weakness": "CWE-20"
},
"CVE-2016-20012": {
"id": "CVE-2016-20012",
"references": [
"https://github.com/openssh/openssh-portable/blob/d0fffc88c8fe90c1815c6f4097bc8cbcabc0f3dd/auth2-pubkey.c#L261-L265",
"https://github.com/openssh/openssh-portable/pull/270",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-920577097",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-943909185",
"https://rushter.com/blog/public-ssh-keys/",
"https://security.netapp.com/advisory/ntap-20211014-0005/",
"https://utcc.utoronto.ca/~cks/space/blog/tech/SSHKeysAreInfoLeak",
"https://www.openwall.com/lists/oss-security/2018/08/24/1",
"https://github.com/openssh/openssh-portable/blob/d0fffc88c8fe90c1815c6f4097bc8cbcabc0f3dd/auth2-pubkey.c#L261-L265",
"https://github.com/openssh/openssh-portable/pull/270",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-920577097",
"https://github.com/openssh/openssh-portable/pull/270#issuecomment-943909185",
"https://rushter.com/blog/public-ssh-keys/",
"https://security.netapp.com/advisory/ntap-20211014-0005/",
"https://utcc.utoronto.ca/~cks/space/blog/tech/SSHKeysAreInfoLeak",
"https://www.openwall.com/lists/oss-security/2018/08/24/1"
],
"score": 5.3,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH server, to test whether this suspicion is correct. This occurs because a challenge is sent only when that combination could be valid for a login session. NOTE: the vendor does not recognize user enumeration as a vulnerability for this product",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:N/A:N",
"weakness": "NVD-CWE-Other"
},
"CVE-2019-16905": {
"id": "CVE-2019-16905",
"references": [
"https://0day.life/exploits/0day-1009.html",
"https://bugzilla.suse.com/show_bug.cgi?id=1153537",
"https://cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf",
"https://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/sshkey-xmss.c",
"https://cvsweb.openbsd.org/cgi-bin/cvsweb/src/usr.bin/ssh/sshkey-xmss.c.diff?r1=1.5&r2=1.6&f=h",
"https://security.gentoo.org/glsa/201911-01",
"https://security.netapp.com/advisory/ntap-20191024-0003/",
"https://ssd-disclosure.com/archives/4033/ssd-advisory-openssh-pre-auth-xmss-integer-overflow",
"https://www.openssh.com/releasenotes.html",
"https://www.openwall.com/lists/oss-security/2019/10/09/1"
],
"score": 7.8,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a client or server is configured to use a crafted XMSS key. This leads to memory corruption and local code execution because of an error in the XMSS key parsing algorithm. NOTE: the XMSS implementation is considered experimental in all released OpenSSH versions, and there is no supported way to enable it when building portable OpenSSH.",
"vector_string": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-190"
},
"CVE-2020-14145": {
"id": "CVE-2020-14145",
"references": [
"http://www.openwall.com/lists/oss-security/2020/12/02/1",
"https://anongit.mindrot.org/openssh.git/commit/?id=b3855ff053f5078ec3d3c653cdaedefaa5fc362d",
"https://docs.ssh-mitm.at/CVE-2020-14145.html",
"https://github.com/openssh/openssh-portable/compare/V_8_3_P1...V_8_4_P1",
"https://github.com/ssh-mitm/ssh-mitm/blob/master/ssh_proxy_server/plugins/session/cve202014145.py",
"https://security.gentoo.org/glsa/202105-35",
"https://security.netapp.com/advisory/ntap-20200709-0004/",
"https://www.fzi.de/en/news/news/detail-en/artikel/fsa-2020-2-ausnutzung-eines-informationslecks-fuer-gezielte-mitm-angriffe-auf-ssh-clients/",
"http://www.openwall.com/lists/oss-security/2020/12/02/1",
"https://anongit.mindrot.org/openssh.git/commit/?id=b3855ff053f5078ec3d3c653cdaedefaa5fc362d",
"https://docs.ssh-mitm.at/CVE-2020-14145.html",
"https://github.com/openssh/openssh-portable/compare/V_8_3_P1...V_8_4_P1",
"https://github.com/ssh-mitm/ssh-mitm/blob/master/ssh_proxy_server/plugins/session/cve202014145.py",
"https://security.gentoo.org/glsa/202105-35",
"https://security.netapp.com/advisory/ntap-20200709-0004/",
"https://www.fzi.de/en/news/news/detail-en/artikel/fsa-2020-2-ausnutzung-eines-informationslecks-fuer-gezielte-mitm-angriffe-auf-ssh-clients/"
],
"score": 5.9,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the client). NOTE: some reports state that 8.5 and 8.6 are also affected.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:N/A:N",
"weakness": "CWE-203"
},
"CVE-2020-15778": {
"id": "CVE-2020-15778",
"references": [
"https://access.redhat.com/errata/RHSA-2024:3166",
"https://github.com/cpandya2909/CVE-2020-15778/",
"https://news.ycombinator.com/item?id=25005567",
"https://security.gentoo.org/glsa/202212-06",
"https://security.netapp.com/advisory/ntap-20200731-0007/",
"https://www.openssh.com/security.html",
"https://access.redhat.com/errata/RHSA-2024:3166",
"https://github.com/cpandya2909/CVE-2020-15778/",
"https://news.ycombinator.com/item?id=25005567",
"https://security.gentoo.org/glsa/202212-06",
"https://security.netapp.com/advisory/ntap-20200731-0007/",
"https://www.openssh.com/security.html"
],
"score": 7.4,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of \"anomalous argument transfers\" because that could \"stand a great chance of breaking existing workflows.\"",
"vector_string": "CVSS:3.1/AV:A/AC:L/PR:L/UI:R/S:U/C:H/I:H/A:H",
"weakness": "CWE-78"
},
"CVE-2021-36368": {
"id": "CVE-2021-36368",
"references": [
"https://bugzilla.mindrot.org/show_bug.cgi?id=3316",
"https://docs.ssh-mitm.at/trivialauth.html",
"https://github.com/openssh/openssh-portable/pull/258",
"https://security-tracker.debian.org/tracker/CVE-2021-36368",
"https://www.openssh.com/security.html",
"https://bugzilla.mindrot.org/show_bug.cgi?id=3316",
"https://docs.ssh-mitm.at/trivialauth.html",
"https://github.com/openssh/openssh-portable/pull/258",
"https://security-tracker.debian.org/tracker/CVE-2021-36368",
"https://www.openssh.com/security.html"
],
"score": 3.7,
"services": [
"22/ssh"
],
"severity": "low",
"summary": "An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without -oLogLevel=verbose, and an attacker has silently modified the server to support the None authentication option, then the user cannot determine whether FIDO authentication is going to confirm that the user wishes to connect to that server, or that the user wishes to allow that server to connect to a different server on the user's behalf. NOTE: the vendor's position is \"this is not an authentication bypass, since nothing is being bypassed.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:L/I:N/A:N",
"weakness": "CWE-287"
},
"CVE-2021-41617": {
"id": "CVE-2021-41617",
"references": [
"https://bugzilla.suse.com/show_bug.cgi?id=1190975",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XJIONMHMKZDTMH6BQR5TNLF2WDCGWED/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KVI7RWM2JLNMWTOFK6BDUSGNOIPZYPUT/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W44V2PFQH5YLRN6ZJTVRKAD7CU6CYYET/",
"https://security.netapp.com/advisory/ntap-20211014-0004/",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-8.8",
"https://www.openwall.com/lists/oss-security/2021/09/26/1",
"https://www.oracle.com/security-alerts/cpuapr2022.html",
"https://www.oracle.com/security-alerts/cpujul2022.html",
"https://www.starwindsoftware.com/security/sw-20220805-0001/",
"https://www.tenable.com/plugins/nessus/154174",
"https://bugzilla.suse.com/show_bug.cgi?id=1190975",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6XJIONMHMKZDTMH6BQR5TNLF2WDCGWED/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KVI7RWM2JLNMWTOFK6BDUSGNOIPZYPUT/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/W44V2PFQH5YLRN6ZJTVRKAD7CU6CYYET/",
"https://security.netapp.com/advisory/ntap-20211014-0004/",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-8.8",
"https://www.openwall.com/lists/oss-security/2021/09/26/1",
"https://www.oracle.com/security-alerts/cpuapr2022.html",
"https://www.oracle.com/security-alerts/cpujul2022.html",
"https://www.starwindsoftware.com/security/sw-20220805-0001/",
"https://www.tenable.com/plugins/nessus/154174"
],
"score": 7,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because supplemental groups are not initialized as expected. Helper programs for AuthorizedKeysCommand and AuthorizedPrincipalsCommand may run with privileges associated with group memberships of the sshd process, if the configuration specifies running the command as a different user.",
"vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "NVD-CWE-Other"
},
"CVE-2023-38408": {
"id": "CVE-2023-38408",
"references": [
"http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html",
"http://www.openwall.com/lists/oss-security/2023/07/20/1",
"http://www.openwall.com/lists/oss-security/2023/07/20/2",
"http://www.openwall.com/lists/oss-security/2023/09/22/11",
"http://www.openwall.com/lists/oss-security/2023/09/22/9",
"https://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent",
"https://github.com/openbsd/src/commit/7bc29a9d5cd697290aa056e94ecee6253d3425f8",
"https://github.com/openbsd/src/commit/f03a4faa55c4ce0818324701dadbf91988d7351d",
"https://github.com/openbsd/src/commit/f8f5a6b003981bb824329dc987d101977beda7ca",
"https://lists.debian.org/debian-lts-announce/2023/08/msg00021.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CEBTJJINE2I3FHAUKKNQWMFGYMLSMWKQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RAXVQS6ZYTULFAK3TEJHRLKZALJS3AOU/",
"https://news.ycombinator.com/item?id=36790196",
"https://security.gentoo.org/glsa/202307-01",
"https://security.netapp.com/advisory/ntap-20230803-0010/",
"https://support.apple.com/kb/HT213940",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-9.3p2",
"https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt",
"https://www.vicarius.io/vsociety/posts/exploring-opensshs-agent-forwarding-rce-cve-2023-38408",
"http://packetstormsecurity.com/files/173661/OpenSSH-Forwarded-SSH-Agent-Remote-Code-Execution.html",
"http://www.openwall.com/lists/oss-security/2023/07/20/1",
"http://www.openwall.com/lists/oss-security/2023/07/20/2",
"http://www.openwall.com/lists/oss-security/2023/09/22/11",
"http://www.openwall.com/lists/oss-security/2023/09/22/9",
"https://blog.qualys.com/vulnerabilities-threat-research/2023/07/19/cve-2023-38408-remote-code-execution-in-opensshs-forwarded-ssh-agent",
"https://github.com/openbsd/src/commit/7bc29a9d5cd697290aa056e94ecee6253d3425f8",
"https://github.com/openbsd/src/commit/f03a4faa55c4ce0818324701dadbf91988d7351d",
"https://github.com/openbsd/src/commit/f8f5a6b003981bb824329dc987d101977beda7ca",
"https://lists.debian.org/debian-lts-announce/2023/08/msg00021.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CEBTJJINE2I3FHAUKKNQWMFGYMLSMWKQ/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RAXVQS6ZYTULFAK3TEJHRLKZALJS3AOU/",
"https://news.ycombinator.com/item?id=36790196",
"https://security.gentoo.org/glsa/202307-01",
"https://security.netapp.com/advisory/ntap-20230803-0010/",
"https://support.apple.com/kb/HT213940",
"https://www.openssh.com/security.html",
"https://www.openssh.com/txt/release-9.3p2",
"https://www.qualys.com/2023/07/19/cve-2023-38408/rce-openssh-forwarded-ssh-agent.txt",
"https://www.vicarius.io/vsociety/posts/exploring-opensshs-agent-forwarding-rce-cve-2023-38408"
],
"score": 9.8,
"services": [
"22/ssh"
],
"severity": "critical",
"summary": "The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if an agent is forwarded to an attacker-controlled system. (Code in /usr/lib is not necessarily safe for loading into ssh-agent.) NOTE: this issue exists because of an incomplete fix for CVE-2016-10009.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-428"
},
"CVE-2023-48795": {
"id": "CVE-2023-48795",
"references": [
"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/18/3",
"http://www.openwall.com/lists/oss-security/2023/12/19/5",
"http://www.openwall.com/lists/oss-security/2023/12/20/3",
"http://www.openwall.com/lists/oss-security/2024/03/06/3",
"http://www.openwall.com/lists/oss-security/2024/04/17/8",
"https://access.redhat.com/security/cve/cve-2023-48795",
"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
"https://bugs.gentoo.org/920280",
"https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
"https://bugzilla.suse.com/show_bug.cgi?id=1217950",
"https://crates.io/crates/thrussh/versions",
"https://filezilla-project.org/versions.php",
"https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
"https://github.com/NixOS/nixpkgs/pull/275249",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
"https://github.com/advisories/GHSA-45x7-px36-x8w8",
"https://github.com/apache/mina-sshd/issues/445",
"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
"https://github.com/cyd01/KiTTY/issues/520",
"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
"https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
"https://github.com/hierynomus/sshj/issues/916",
"https://github.com/janmojzis/tinyssh/issues/81",
"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
"https://github.com/libssh2/libssh2/pull/1291",
"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
"https://github.com/mwiede/jsch/issues/457",
"https://github.com/mwiede/jsch/pull/461",
"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
"https://github.com/openssh/openssh-portable/commits/master",
"https://github.com/paramiko/paramiko/issues/2337",
"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/456",
"https://github.com/rapier1/hpn-ssh/releases",
"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
"https://github.com/ronf/asyncssh/tags",
"https://github.com/ssh-mitm/ssh-mitm/issues/165",
"https://github.com/warp-tech/russh/releases/tag/v0.40.2",
"https://gitlab.com/libssh/libssh-mirror/-/tags",
"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
"https://help.panic.com/releasenotes/transmit5/",
"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
"https://matt.ucc.asn.au/dropbear/CHANGES",
"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
"https://news.ycombinator.com/item?id=38684904",
"https://news.ycombinator.com/item?id=38685286",
"https://news.ycombinator.com/item?id=38732005",
"https://nova.app/releases/#v11.8",
"https://oryx-embedded.com/download/#changelog",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
"https://roumenpetrov.info/secsh/#news20231220",
"https://security-tracker.debian.org/tracker/CVE-2023-48795",
"https://security-tracker.debian.org/tracker/source-package/libssh2",
"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
"https://security.gentoo.org/glsa/202312-16",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0004/",
"https://support.apple.com/kb/HT214084",
"https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
"https://twitter.com/TrueSkrillor/status/1736774389725565005",
"https://ubuntu.com/security/CVE-2023-48795",
"https://winscp.net/eng/docs/history#6.2.2",
"https://www.bitvise.com/ssh-client-version-history#933",
"https://www.bitvise.com/ssh-server-version-history",
"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.debian.org/security/2023/dsa-5588",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
"https://www.netsarang.com/en/xshell-update-history/",
"https://www.openssh.com/openbsd.html",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"https://www.openwall.com/lists/oss-security/2023/12/20/3",
"https://www.paramiko.org/changelog.html",
"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
"https://www.terrapin-attack.com",
"https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
"https://www.vandyke.com/products/securecrt/history.txt",
"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/18/3",
"http://www.openwall.com/lists/oss-security/2023/12/19/5",
"http://www.openwall.com/lists/oss-security/2023/12/20/3",
"http://www.openwall.com/lists/oss-security/2024/03/06/3",
"http://www.openwall.com/lists/oss-security/2024/04/17/8",
"https://access.redhat.com/security/cve/cve-2023-48795",
"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
"https://bugs.gentoo.org/920280",
"https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
"https://bugzilla.suse.com/show_bug.cgi?id=1217950",
"https://crates.io/crates/thrussh/versions",
"https://filezilla-project.org/versions.php",
"https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
"https://github.com/NixOS/nixpkgs/pull/275249",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
"https://github.com/advisories/GHSA-45x7-px36-x8w8",
"https://github.com/apache/mina-sshd/issues/445",
"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
"https://github.com/cyd01/KiTTY/issues/520",
"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
"https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
"https://github.com/hierynomus/sshj/issues/916",
"https://github.com/janmojzis/tinyssh/issues/81",
"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
"https://github.com/libssh2/libssh2/pull/1291",
"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
"https://github.com/mwiede/jsch/issues/457",
"https://github.com/mwiede/jsch/pull/461",
"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
"https://github.com/openssh/openssh-portable/commits/master",
"https://github.com/paramiko/paramiko/issues/2337",
"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/456",
"https://github.com/rapier1/hpn-ssh/releases",
"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
"https://github.com/ronf/asyncssh/tags",
"https://github.com/ssh-mitm/ssh-mitm/issues/165",
"https://github.com/warp-tech/russh/releases/tag/v0.40.2",
"https://gitlab.com/libssh/libssh-mirror/-/tags",
"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
"https://help.panic.com/releasenotes/transmit5/",
"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
"https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html",
"https://lists.debian.org/debian-lts-announce/2024/11/msg00032.html",
"https://lists.debian.org/debian-lts-announce/2025/04/msg00028.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/[email protected]/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://matt.ucc.asn.au/dropbear/CHANGES",
"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
"https://news.ycombinator.com/item?id=38684904",
"https://news.ycombinator.com/item?id=38685286",
"https://news.ycombinator.com/item?id=38732005",
"https://nova.app/releases/#v11.8",
"https://oryx-embedded.com/download/#changelog",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
"https://roumenpetrov.info/secsh/#news20231220",
"https://security-tracker.debian.org/tracker/CVE-2023-48795",
"https://security-tracker.debian.org/tracker/source-package/libssh2",
"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
"https://security.gentoo.org/glsa/202312-16",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0004/",
"https://support.apple.com/kb/HT214084",
"https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
"https://twitter.com/TrueSkrillor/status/1736774389725565005",
"https://ubuntu.com/security/CVE-2023-48795",
"https://winscp.net/eng/docs/history#6.2.2",
"https://www.bitvise.com/ssh-client-version-history#933",
"https://www.bitvise.com/ssh-server-version-history",
"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.debian.org/security/2023/dsa-5588",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
"https://www.netsarang.com/en/xshell-update-history/",
"https://www.openssh.com/openbsd.html",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"https://www.openwall.com/lists/oss-security/2023/12/20/3",
"https://www.paramiko.org/changelog.html",
"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
"https://www.terrapin-attack.com",
"https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
"https://www.vandyke.com/products/securecrt/history.txt",
"https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit",
"https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability"
],
"score": 5.9,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in [email protected] and (if CBC is used) the [email protected] MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-354"
},
"CVE-2023-51384": {
"id": "CVE-2023-51384",
"references": [
"http://seclists.org/fulldisclosure/2024/Mar/21",
"https://github.com/openssh/openssh-portable/commit/881d9c6af9da4257c69c327c4e2f1508b2fa754b",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"https://github.com/openssh/openssh-portable/commit/881d9c6af9da4257c69c327c4e2f1508b2fa754b",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2"
],
"score": 5.5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified during addition of PKCS#11-hosted private keys, these constraints are only applied to the first key, even if a PKCS#11 token returns multiple keys.",
"vector_string": "CVSS:3.1/AV:L/AC:L/PR:L/UI:N/S:U/C:H/I:N/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-2023-51385": {
"id": "CVE-2023-51385",
"references": [
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/26/4",
"https://github.com/openssh/openssh-portable/commit/7ef3787c84b6b524501211b11a26c742f829af1a",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://vin01.github.io/piptagole/ssh/security/openssh/libssh/remote-code-execution/2023/12/20/openssh-proxycommand-libssh-rce.html",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/26/4",
"http://www.openwall.com/lists/oss-security/2025/10/07/1",
"http://www.openwall.com/lists/oss-security/2025/10/12/1",
"https://github.com/openssh/openssh-portable/commit/7ef3787c84b6b524501211b11a26c742f829af1a",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0005/",
"https://support.apple.com/kb/HT214084",
"https://vin01.github.io/piptagole/ssh/security/openssh/libssh/remote-code-execution/2023/12/20/openssh-proxycommand-libssh-rce.html",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2"
],
"score": 6.5,
"services": [
"22/ssh"
],
"severity": "medium",
"summary": "In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is referenced by an expansion token in certain situations. For example, an untrusted Git repository can have a submodule with shell metacharacters in a user name or host name.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N",
"weakness": "CWE-78"
},
"CVE-2023-51767": {
"id": "CVE-2023-51767",
"references": [
"https://access.redhat.com/security/cve/CVE-2023-51767",
"https://arxiv.org/abs/2309.02545",
"https://bugzilla.redhat.com/show_bug.cgi?id=2255850",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/auth-passwd.c#L77",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/monitor.c#L878",
"https://security.netapp.com/advisory/ntap-20240125-0006/",
"https://ubuntu.com/security/CVE-2023-51767",
"https://www.openwall.com/lists/oss-security/2025/09/22/1",
"http://www.openwall.com/lists/oss-security/2025/09/22/1",
"http://www.openwall.com/lists/oss-security/2025/09/22/2",
"http://www.openwall.com/lists/oss-security/2025/09/23/1",
"http://www.openwall.com/lists/oss-security/2025/09/23/3",
"http://www.openwall.com/lists/oss-security/2025/09/23/4",
"http://www.openwall.com/lists/oss-security/2025/09/23/5",
"http://www.openwall.com/lists/oss-security/2025/09/24/4",
"http://www.openwall.com/lists/oss-security/2025/09/24/7",
"http://www.openwall.com/lists/oss-security/2025/09/25/2",
"http://www.openwall.com/lists/oss-security/2025/09/25/6",
"http://www.openwall.com/lists/oss-security/2025/09/26/2",
"http://www.openwall.com/lists/oss-security/2025/09/26/4",
"http://www.openwall.com/lists/oss-security/2025/09/27/1",
"http://www.openwall.com/lists/oss-security/2025/09/27/2",
"http://www.openwall.com/lists/oss-security/2025/09/27/3",
"http://www.openwall.com/lists/oss-security/2025/09/27/4",
"http://www.openwall.com/lists/oss-security/2025/09/27/5",
"http://www.openwall.com/lists/oss-security/2025/09/27/6",
"http://www.openwall.com/lists/oss-security/2025/09/27/7",
"http://www.openwall.com/lists/oss-security/2025/09/28/7",
"http://www.openwall.com/lists/oss-security/2025/09/29/1",
"http://www.openwall.com/lists/oss-security/2025/09/29/4",
"http://www.openwall.com/lists/oss-security/2025/09/29/5",
"http://www.openwall.com/lists/oss-security/2025/09/29/6",
"http://www.openwall.com/lists/oss-security/2025/10/01/1",
"http://www.openwall.com/lists/oss-security/2025/10/01/2",
"https://access.redhat.com/security/cve/CVE-2023-51767",
"https://arxiv.org/abs/2309.02545",
"https://bugzilla.redhat.com/show_bug.cgi?id=2255850",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/auth-passwd.c#L77",
"https://github.com/openssh/openssh-portable/blob/8241b9c0529228b4b86d88b1a6076fb9f97e4a99/monitor.c#L878",
"https://security.netapp.com/advisory/ntap-20240125-0006/",
"https://ubuntu.com/security/CVE-2023-51767"
],
"score": 7,
"services": [
"22/ssh"
],
"severity": "high",
"summary": "OpenSSH through 10.0, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer value of authenticated in mm_answer_authpassword does not resist flips of a single bit. NOTE: this is applicable to a certain threat model of attacker-victim co-location in which the attacker has user privileges. NOTE: this is disputed by the Supplier, who states \"we do not consider it to be the application's responsibility to defend against platform architectural weaknesses.\"",
"vector_string": "CVSS:3.1/AV:L/AC:H/PR:L/UI:N/S:U/C:H/I:H/A:H",
"weakness": "NVD-CWE-Other"
}
}
}