CVE-2023-48795 - Vulnerability Details

- ssh: Prefix truncation attack on Binary Packet Protocol (BPP)

Description

The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in chacha20-poly1305@openssh.com and (if CBC is used) the -etm@openssh.com MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.

Published: 2023-12-18

Score: 5.9 Medium

EPSS: 52.6% High

KEV: No

Impact:

Action:

Analysis

Analysis and contextual insights are available on OpenCVE Cloud.

Default status is the baseline for the product, each version can override it (e.g. patched versions marked unaffected).

Vendor Product Default status Versions

n/a

affected

Version	Status	Constraints
`n/a`	affected	—

Configuration 1 [-]

cpe:2.3:a:openbsd:openssh:*:*:*:*:*:*:*:*

Configuration 2 [-]

cpe:2.3:a:putty:putty:*:*:*:*:*:*:*:*

Configuration 3 [-]

cpe:2.3:a:filezilla-project:filezilla_client:*:*:*:*:*:*:*:*

Configuration 4 [-]

AND

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

cpe:2.3:a:panic:transmit_5:*:*:*:*:*:*:*:*

Configuration 5 [-]

AND

cpe:2.3:o:apple:macos:-:*:*:*:*:*:*:*

cpe:2.3:a:panic:nova:*:*:*:*:*:*:*:*

Configuration 6 [-]

cpe:2.3:a:roumenpetrov:pkixssh:*:*:*:*:*:*:*:*

Configuration 7 [-]

cpe:2.3:a:winscp:winscp:*:*:*:*:*:*:*:*

Configuration 8 [-]

cpe:2.3:a:bitvise:ssh_client:*:*:*:*:*:*:*:*

Configuration 9 [-]

cpe:2.3:a:bitvise:ssh_server:*:*:*:*:*:*:*:*

Configuration 10 [-]

cpe:2.3:o:lancom-systems:lcos:*:*:*:*:*:*:*:*

Configuration 11 [-]

cpe:2.3:o:lancom-systems:lcos_fx:-:*:*:*:*:*:*:*

Configuration 12 [-]

cpe:2.3:o:lancom-systems:lcos_lx:-:*:*:*:*:*:*:*

Configuration 13 [-]

OR	cpe:2.3:o:lancom-systems:lcos_sx:4.20:::::::*
	cpe:2.3:o:lancom-systems:lcos_sx:5.20:::::::*

Configuration 14 [-]

cpe:2.3:o:lancom-systems:lanconfig:-:*:*:*:*:*:*:*

Configuration 15 [-]

cpe:2.3:a:vandyke:securecrt:*:*:*:*:*:*:*:*

Configuration 16 [-]

cpe:2.3:a:libssh:libssh:*:*:*:*:*:*:*:*

Configuration 17 [-]

cpe:2.3:a:net-ssh:net-ssh:7.2.0:*:*:*:*:ruby:*:*

Configuration 18 [-]

cpe:2.3:a:ssh2_project:ssh2:*:*:*:*:*:node.js:*:*

Configuration 19 [-]

cpe:2.3:a:proftpd:proftpd:*:*:*:*:*:*:*:*

Configuration 20 [-]

cpe:2.3:o:freebsd:freebsd:*:*:*:*:*:*:*:*

Configuration 21 [-]

cpe:2.3:a:crates:thrussh:*:*:*:*:*:*:*:*

Configuration 22 [-]

cpe:2.3:a:tera_term_project:tera_term:*:*:*:*:*:*:*:*

Configuration 23 [-]

cpe:2.3:a:oryx-embedded:cyclone_ssh:*:*:*:*:*:*:*:*

Configuration 24 [-]

cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*

Configuration 25 [-]

cpe:2.3:a:netsarang:xshell_7:*:*:*:*:*:*:*:*

Configuration 26 [-]

cpe:2.3:a:paramiko:paramiko:*:*:*:*:*:*:*:*

Configuration 27 [-]

cpe:2.3:a:redhat:openshift_container_platform:4.0:*:*:*:*:*:*:*

Configuration 28 [-]

OR	cpe:2.3:a:redhat:openstack_platform:16.1:::::::*
	cpe:2.3:a:redhat:openstack_platform:16.2:::::::*
	cpe:2.3:a:redhat:openstack_platform:17.1:::::::*

Configuration 29 [-]

cpe:2.3:a:redhat:ceph_storage:6.0:*:*:*:*:*:*:*

Configuration 30 [-]

OR	cpe:2.3:o:redhat:enterprise_linux:8.0:::::::*
	cpe:2.3:o:redhat:enterprise_linux:9.0:::::::*

Configuration 31 [-]

cpe:2.3:a:redhat:openshift_serverless:-:*:*:*:*:*:*:*

Configuration 32 [-]

cpe:2.3:a:redhat:openshift_gitops:-:*:*:*:*:*:*:*

Configuration 33 [-]

cpe:2.3:a:redhat:openshift_pipelines:-:*:*:*:*:*:*:*

Configuration 34 [-]

cpe:2.3:a:redhat:openshift_developer_tools_and_services:-:*:*:*:*:*:*:*

Configuration 35 [-]

cpe:2.3:a:redhat:openshift_data_foundation:4.0:*:*:*:*:*:*:*

Configuration 36 [-]

cpe:2.3:a:redhat:openshift_api_for_data_protection:-:*:*:*:*:*:*:*

Configuration 37 [-]

cpe:2.3:a:redhat:openshift_virtualization:4:*:*:*:*:*:*:*

Configuration 38 [-]

cpe:2.3:a:redhat:storage:3.0:*:*:*:*:*:*:*

Configuration 39 [-]

cpe:2.3:a:redhat:discovery:-:*:*:*:*:*:*:*

Configuration 40 [-]

cpe:2.3:a:redhat:openshift_dev_spaces:-:*:*:*:*:*:*:*

Configuration 41 [-]

cpe:2.3:a:redhat:cert-manager_operator_for_red_hat_openshift:-:*:*:*:*:*:*:*

Configuration 42 [-]

cpe:2.3:a:redhat:keycloak:-:*:*:*:*:*:*:*

Configuration 43 [-]

cpe:2.3:a:redhat:jboss_enterprise_application_platform:7.0:*:*:*:*:*:*:*

Configuration 44 [-]

cpe:2.3:a:redhat:single_sign-on:7.0:*:*:*:*:*:*:*

Configuration 45 [-]

OR	cpe:2.3:a:redhat:advanced_cluster_security:3.0:::::::*
	cpe:2.3:a:redhat:advanced_cluster_security:4.0:::::::*

Configuration 46 [-]

cpe:2.3:a:golang:crypto:*:*:*:*:*:*:*:*

Configuration 47 [-]

cpe:2.3:a:russh_project:russh:*:*:*:*:*:rust:*:*

Configuration 48 [-]

cpe:2.3:a:sftpgo_project:sftpgo:*:*:*:*:*:*:*:*

Configuration 49 [-]

OR	cpe:2.3:a:erlang:erlang\/otp::::::::
	cpe:2.3:a:erlang:erlang\/otp::::::::
	cpe:2.3:a:erlang:erlang\/otp::::::::
	cpe:2.3:a:erlang:erlang\/otp::::::::
	cpe:2.3:a:erlang:erlang\/otp::::::::

Configuration 50 [-]

cpe:2.3:a:matez:jsch:*:*:*:*:*:*:*:*

Configuration 51 [-]

cpe:2.3:a:libssh2:libssh2:*:*:*:*:*:*:*:*

Configuration 52 [-]

cpe:2.3:a:asyncssh_project:asyncssh:*:*:*:*:*:*:*:*

Configuration 53 [-]

cpe:2.3:a:dropbear_ssh_project:dropbear_ssh:*:*:*:*:*:*:*:*

Configuration 54 [-]

cpe:2.3:a:jadaptive:maverick_synergy_java_ssh_api:*:*:*:*:*:*:*:*

Configuration 55 [-]

OR	cpe:2.3:a:ssh:ssh::::::::
	cpe:2.3:a:ssh:ssh::::::::
	cpe:2.3:a:ssh:ssh::::::::
	cpe:2.3:a:ssh:ssh::::::::
	cpe:2.3:a:ssh:ssh::::::::

Configuration 56 [-]

cpe:2.3:o:thorntech:sftp_gateway_firmware:*:*:*:*:*:*:*:*

Configuration 57 [-]

cpe:2.3:a:netgate:pfsense_plus:*:*:*:*:*:*:*:*

Configuration 58 [-]

cpe:2.3:a:netgate:pfsense_ce:*:*:*:*:*:*:*:*

Configuration 59 [-]

cpe:2.3:a:crushftp:crushftp:*:*:*:*:*:*:*:*

Configuration 60 [-]

cpe:2.3:a:connectbot:sshlib:*:*:*:*:*:*:*:*

Configuration 61 [-]

cpe:2.3:a:apache:sshd:*:*:*:*:*:*:*:*

Configuration 62 [-]

cpe:2.3:a:apache:sshj:*:*:*:*:*:*:*:*

Configuration 63 [-]

cpe:2.3:a:tinyssh:tinyssh:*:*:*:*:*:*:*:*

Configuration 64 [-]

cpe:2.3:a:trilead:ssh2:6401:*:*:*:*:*:*:*

Configuration 65 [-]

cpe:2.3:a:9bis:kitty:*:*:*:*:*:*:*:*

Configuration 66 [-]

AND

cpe:2.3:a:gentoo:security:-:*:*:*:*:*:*:*

cpe:2.3:o:debian:debian_linux:-:*:*:*:*:*:*:*

Configuration 67 [-]

OR	cpe:2.3:o:fedoraproject:fedora:38:::::::*
	cpe:2.3:o:fedoraproject:fedora:39:::::::*

Configuration 68 [-]

cpe:2.3:o:debian:debian_linux:10.0:*:*:*:*:*:*:*

Configuration 69 [-]

cpe:2.3:o:apple:macos:*:*:*:*:*:*:*:*

Package	CPE	Advisory	Released Date
EAP 8.0.1
apache-sshd	cpe:/a:redhat:jboss_enterprise_application_platform:8.0	RHSA-2024:1194	2024-03-06T00:00:00Z
OADP-1.3-RHEL-9
oadp/oadp-velero-rhel9:1.3.1-16	cpe:/a:redhat:openshift_api_data_protection:1.3::el9	RHSA-2024:1859	2024-04-16T00:00:00Z
OCP-Tools-4.12-RHEL-8
jenkins-0:2.440.3.1716445200-3.el8	cpe:/a:redhat:ocp_tools:4.12::el8	RHSA-2024:3635	2024-06-05T00:00:00Z
jenkins-2-plugins-0:4.12.1716445211-1.el8	cpe:/a:redhat:ocp_tools:4.12::el8	RHSA-2024:3635	2024-06-05T00:00:00Z
OCP-Tools-4.13-RHEL-8
jenkins-0:2.440.3.1716445150-3.el8	cpe:/a:redhat:ocp_tools:4.13::el8	RHSA-2024:3636	2024-06-05T00:00:00Z
jenkins-2-plugins-0:4.13.1716445207-1.el8	cpe:/a:redhat:ocp_tools:4.13::el8	RHSA-2024:3636	2024-06-05T00:00:00Z
OCP-Tools-4.14-RHEL-8
jenkins-0:2.440.3.1716387933-3.el8	cpe:/a:redhat:ocp_tools:4.14::el8	RHSA-2024:3634	2024-06-05T00:00:00Z
jenkins-2-plugins-0:4.14.1716388016-1.el8	cpe:/a:redhat:ocp_tools:4.14::el8	RHSA-2024:3634	2024-06-05T00:00:00Z
OCP-Tools-4.15-RHEL-8
jenkins-0:2.440.3.1718879390-3.el8	cpe:/a:redhat:ocp_tools:4.15::el8	RHSA-2024:4597	2024-07-17T00:00:00Z
jenkins-2-plugins-0:4.15.1718879538-1.el8	cpe:/a:redhat:ocp_tools:4.15::el8	RHSA-2024:4597	2024-07-17T00:00:00Z
OPENSHIFT-BUILDS-1.0-RHEL-8
openshift-builds/openshift-builds-controller-rhel8:v1.0.1-4	cpe:/a:redhat:openshift_builds:1.0::el8	RHSA-2024:1557	2024-03-28T00:00:00Z
openshift-builds/openshift-builds-git-cloner-rhel8:v1.0.1-4	cpe:/a:redhat:openshift_builds:1.0::el8	RHSA-2024:1557	2024-03-28T00:00:00Z
openshift-builds/openshift-builds-image-bundler-rhel8:v1.0.1-4	cpe:/a:redhat:openshift_builds:1.0::el8	RHSA-2024:1557	2024-03-28T00:00:00Z
openshift-builds/openshift-builds-image-processing-rhel8:v1.0.1-4	cpe:/a:redhat:openshift_builds:1.0::el8	RHSA-2024:1557	2024-03-28T00:00:00Z
openshift-builds/openshift-builds-operator-bundle:v1.0.1-11	cpe:/a:redhat:openshift_builds:1.0::el8	RHSA-2024:1557	2024-03-28T00:00:00Z
openshift-builds/openshift-builds-rhel8-operator:v1.0.1-6	cpe:/a:redhat:openshift_builds:1.0::el8	RHSA-2024:1557	2024-03-28T00:00:00Z
openshift-builds/openshift-builds-waiters-rhel8:v1.0.1-4	cpe:/a:redhat:openshift_builds:1.0::el8	RHSA-2024:1557	2024-03-28T00:00:00Z
openshift-builds/openshift-builds-webhook-rhel8:v1.0.1-4	cpe:/a:redhat:openshift_builds:1.0::el8	RHSA-2024:1557	2024-03-28T00:00:00Z
Openshift Serverless 1 on RHEL 8
openshift-serverless-clients-0:1.10.0-6.el8	cpe:/a:redhat:serverless:1.0::el8	RHSA-2024:0880	2024-02-20T00:00:00Z
Red Hat Ceph Storage 7.1
ceph-2:18.2.1-329.el9cp	cpe:/a:redhat:ceph_storage:7.1::el8	RHSA-2025:4664	2025-05-07T00:00:00Z
oath-toolkit-0:2.6.12-1.el8cp	cpe:/a:redhat:ceph_storage:7.1::el8	RHSA-2025:4664	2025-05-07T00:00:00Z
Red Hat Enterprise Linux 8
openssh-0:8.0p1-19.el8_9.2	cpe:/a:redhat:enterprise_linux:8	RHSA-2024:0606	2024-01-30T00:00:00Z
libssh-0:0.9.6-13.el8_9	cpe:/a:redhat:enterprise_linux:8	RHSA-2024:0628	2024-01-31T00:00:00Z
container-tools:rhel8-8100020240227110532.82888897	cpe:/a:redhat:enterprise_linux:8	RHSA-2024:2988	2024-05-22T00:00:00Z
openssh-0:8.0p1-19.el8_9.2	cpe:/o:redhat:enterprise_linux:8	RHSA-2024:0606	2024-01-30T00:00:00Z
libssh-0:0.9.6-13.el8_9	cpe:/o:redhat:enterprise_linux:8	RHSA-2024:0628	2024-01-31T00:00:00Z
Red Hat Enterprise Linux 8.6 Extended Update Support
openssh-0:8.0p1-15.el8_6.3	cpe:/a:redhat:rhel_eus:8.6	RHSA-2024:0429	2024-01-25T00:00:00Z
libssh-0:0.9.6-4.el8_6	cpe:/a:redhat:rhel_eus:8.6	RHSA-2024:0538	2024-01-29T00:00:00Z
Red Hat Enterprise Linux 8.8 Extended Update Support
openssh-0:8.0p1-19.el8_8.2	cpe:/a:redhat:rhel_eus:8.8	RHSA-2024:0594	2024-01-30T00:00:00Z
libssh-0:0.9.6-13.el8_8	cpe:/a:redhat:rhel_eus:8.8	RHSA-2024:0625	2024-01-31T00:00:00Z
Red Hat Enterprise Linux 9
libssh-0:0.10.4-12.el9_3	cpe:/a:redhat:enterprise_linux:9	RHBA-2024:1127	2024-03-05T00:00:00Z
podman-2:4.6.1-8.el9_3	cpe:/a:redhat:enterprise_linux:9	RHBA-2024:1136	2024-03-05T00:00:00Z
openssh-0:8.7p1-34.el9_3.3	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:1130	2024-03-05T00:00:00Z
buildah-1:1.31.4-1.el9_3	cpe:/a:redhat:enterprise_linux:9	RHSA-2024:1150	2024-03-05T00:00:00Z
libssh-0:0.10.4-12.el9_3	cpe:/o:redhat:enterprise_linux:9	RHBA-2024:1127	2024-03-05T00:00:00Z
openssh-0:8.7p1-34.el9_3.3	cpe:/o:redhat:enterprise_linux:9	RHSA-2024:1130	2024-03-05T00:00:00Z
Red Hat Enterprise Linux 9.2 Extended Update Support
openssh-0:8.7p1-30.el9_2.3	cpe:/a:redhat:rhel_eus:9.2	RHSA-2024:0455	2024-01-25T00:00:00Z
libssh-0:0.10.4-9.el9_2	cpe:/a:redhat:rhel_eus:9.2	RHSA-2024:0499	2024-01-25T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7
	cpe:/a:redhat:jboss_enterprise_application_platform:7.4	RHSA-2024:1197	2024-03-06T00:00:00Z
apache-sshd	cpe:/a:redhat:jboss_enterprise_application_platform:7.4	RHSA-2024:1677	2024-04-04T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 8
eap7-apache-sshd-0:2.12.1-1.redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1196	2024-03-06T00:00:00Z
eap7-activemq-artemis-0:2.16.0-18.redhat_00052.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-apache-cxf-0:3.4.10-2.redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-eclipse-jgit-0:5.13.3.202401111512-1.r_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-elytron-web-0:1.9.4-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-hal-console-0:3.3.21-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-hibernate-0:5.3.36-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-infinispan-0:11.0.18-2.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-insights-java-client-0:1.1.2-1.redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-jberet-0:1.3.9-3.SP3_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-jboss-annotations-api_1.3_spec-0:2.0.1-3.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-jboss-cert-helper-0:1.1.2-1.redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-jboss-remoting-0:5.0.27-4.SP2_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-jboss-server-migration-0:1.10.0-35.Final_redhat_00034.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-jboss-xnio-base-0:3.8.12-1.SP2_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-jgroups-kubernetes-0:1.0.17-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-lucene-solr-0:5.5.5-6.redhat_2.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-undertow-0:2.2.30-1.SP1_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-wildfly-0:7.4.16-4.GA_redhat_00002.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
eap7-wildfly-elytron-0:1.15.22-1.Final_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el8	RHSA-2024:1675	2024-04-04T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.4 for RHEL 9
eap7-apache-sshd-0:2.12.1-1.redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1196	2024-03-06T00:00:00Z
eap7-activemq-artemis-0:2.16.0-18.redhat_00052.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-apache-cxf-0:3.4.10-2.redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-eclipse-jgit-0:5.13.3.202401111512-1.r_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-elytron-web-0:1.9.4-1.Final_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-hal-console-0:3.3.21-1.Final_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-hibernate-0:5.3.36-1.Final_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-infinispan-0:11.0.18-2.Final_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-insights-java-client-0:1.1.2-1.redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-jberet-0:1.3.9-3.SP3_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-jboss-annotations-api_1.3_spec-0:2.0.1-3.Final_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-jboss-cert-helper-0:1.1.2-1.redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-jboss-remoting-0:5.0.27-4.SP2_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-jboss-server-migration-0:1.10.0-35.Final_redhat_00034.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-jboss-xnio-base-0:3.8.12-1.SP2_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-jgroups-kubernetes-0:1.0.17-1.Final_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-lucene-solr-0:5.5.5-6.redhat_2.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-undertow-0:2.2.30-1.SP1_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-wildfly-0:7.4.16-4.GA_redhat_00002.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
eap7-wildfly-elytron-0:1.15.22-1.Final_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el9	RHSA-2024:1676	2024-04-04T00:00:00Z
Red Hat JBoss Enterprise Application Platform 7.4 on RHEL 7
eap7-apache-sshd-0:2.12.1-1.redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1196	2024-03-06T00:00:00Z
eap7-activemq-artemis-0:2.16.0-18.redhat_00052.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-apache-cxf-0:3.4.10-2.redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-eclipse-jgit-0:5.13.3.202401111512-1.r_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-elytron-web-0:1.9.4-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-hal-console-0:3.3.21-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-hibernate-0:5.3.36-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-infinispan-0:11.0.18-2.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-insights-java-client-0:1.1.2-1.redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-jberet-0:1.3.9-3.SP3_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-jboss-annotations-api_1.3_spec-0:2.0.1-3.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-jboss-cert-helper-0:1.1.2-1.redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-jboss-remoting-0:5.0.27-4.SP2_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-jboss-server-migration-0:1.10.0-35.Final_redhat_00034.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-jboss-xnio-base-0:3.8.12-1.SP2_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-jgroups-kubernetes-0:1.0.17-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-lucene-solr-0:5.5.5-6.redhat_2.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-undertow-0:2.2.30-1.SP1_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-wildfly-0:7.4.16-4.GA_redhat_00002.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
eap7-wildfly-elytron-0:1.15.22-1.Final_redhat_00001.1.el7eap	cpe:/a:redhat:jboss_enterprise_application_platform:7.4::el7	RHSA-2024:1674	2024-04-04T00:00:00Z
Red Hat JBoss Enterprise Application Platform 8.0 for RHEL 8
eap8-apache-sshd-0:2.12.0-1.redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el8	RHSA-2024:1192	2024-03-06T00:00:00Z
eap8-eclipse-jgit-0:6.6.1.202309021850-1.r_redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el8	RHSA-2024:1192	2024-03-06T00:00:00Z
eap8-log4j-0:2.19.0-2.redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el8	RHSA-2024:1192	2024-03-06T00:00:00Z
eap8-lucene-solr-0:8.11.2-2.redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el8	RHSA-2024:1192	2024-03-06T00:00:00Z
eap8-parsson-0:1.1.5-1.redhat_00001.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el8	RHSA-2024:1192	2024-03-06T00:00:00Z
eap8-wildfly-0:8.0.1-3.GA_redhat_00002.1.el8eap	cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el8	RHSA-2024:1192	2024-03-06T00:00:00Z
Red Hat JBoss Enterprise Application Platform 8.0 for RHEL 9
eap8-apache-sshd-0:2.12.0-1.redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el9	RHSA-2024:1193	2024-03-06T00:00:00Z
eap8-eclipse-jgit-0:6.6.1.202309021850-1.r_redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el9	RHSA-2024:1193	2024-03-06T00:00:00Z
eap8-log4j-0:2.19.0-2.redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el9	RHSA-2024:1193	2024-03-06T00:00:00Z
eap8-lucene-solr-0:8.11.2-2.redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el9	RHSA-2024:1193	2024-03-06T00:00:00Z
eap8-parsson-0:1.1.5-1.redhat_00001.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el9	RHSA-2024:1193	2024-03-06T00:00:00Z
eap8-wildfly-0:8.0.1-3.GA_redhat_00002.1.el9eap	cpe:/a:redhat:jboss_enterprise_application_platform:8.0::el9	RHSA-2024:1193	2024-03-06T00:00:00Z
Red Hat OpenShift Container Platform 4.12
openshift4/ose-olm-rukpak-rhel8:v4.12.0-202408072016.p0.gf219ce7.assembly.stream.el8	cpe:/a:redhat:openshift:4.12::el8	RHSA-2024:5200	2024-08-19T00:00:00Z
Red Hat OpenShift Container Platform 4.13
openshift4/ose-olm-rukpak-rhel8:v4.13.0-202407081338.p0.gaf47118.assembly.stream.el8	cpe:/a:redhat:openshift:4.13::el8	RHSA-2024:4484	2024-07-17T00:00:00Z
Red Hat OpenShift Container Platform 4.14
podman-3:4.4.1-14.4.rhaos4.14.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:3918	2024-06-19T00:00:00Z
openshift4/ose-olm-rukpak-rhel8:v4.14.0-202406180839.p0.gc9409c6.assembly.stream.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:4010	2024-06-26T00:00:00Z
openshift4/ose-azure-cluster-api-controllers-rhel8:v4.14.0-202407021509.p0.g81b4d03.assembly.stream.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:4329	2024-07-11T00:00:00Z
openshift4/ose-cluster-capi-operator-container-rhel8:v4.14.0-202407021509.p0.g166561f.assembly.stream.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:4329	2024-07-11T00:00:00Z
openshift4/ose-cluster-capi-rhel8-operator:v4.14.0-202407021509.p0.g166561f.assembly.stream.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:4329	2024-07-11T00:00:00Z
openshift4/ose-machine-api-provider-azure-rhel8:v4.14.0-202407021509.p0.gae97901.assembly.stream.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:4329	2024-07-11T00:00:00Z
openshift4/ose-vsphere-cluster-api-controllers-rhel8:v4.14.0-202407021509.p0.gb5346ad.assembly.stream.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:4329	2024-07-11T00:00:00Z
openshift4/ose-azure-disk-csi-driver-rhel8:v4.14.0-202407090841.p0.g6d3558a.assembly.stream.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:4479	2024-07-17T00:00:00Z
openshift4/ose-aws-efs-csi-driver-container-rhel8:v4.14.0-202407120139.p0.g18d04fd.assembly.stream.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:4959	2024-08-07T00:00:00Z
openshift4/ose-aws-ebs-csi-driver-rhel8:v4.14.0-202407120139.p0.g4622dee.assembly.stream.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:4960	2024-08-07T00:00:00Z
openshift4/egress-router-cni-rhel8:v4.14.0-202408070332.p0.g96f2f54.assembly.stream.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:5433	2024-08-22T00:00:00Z
openshift4/ose-hyperkube-rhel9:v4.14.0-202409041843.p0.g03a907c.assembly.stream.el9	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:6406	2024-09-11T00:00:00Z
openshift4/ose-tools-rhel8:v4.14.0-202408260910.p0.g44b3ac2.assembly.stream.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:6406	2024-09-11T00:00:00Z
openshift4/ose-installer:v4.14.0-202410120808.p0.gb6457e9.assembly.stream.el8	cpe:/a:redhat:openshift:4.14::el8	RHSA-2024:8235	2024-10-23T00:00:00Z
openshift4/ose-ptp-rhel9:v4.14.0-202408090010.p0.g3f4aba2.assembly.stream.el9	cpe:/a:redhat:openshift:4.14::el9	RHSA-2024:5432	2024-08-21T00:00:00Z
Red Hat OpenShift Container Platform 4.15
openshift4/ose-aws-ebs-csi-driver-rhel9:v4.15.0-202401261531.p0.gb692edb.assembly.stream	cpe:/a:redhat:openshift:4.15::el8	RHSA-2023:7198	2024-02-27T00:00:00Z
openshift4/ose-azure-disk-csi-driver-rhel9:v4.15.0-202401261531.p0.gdcb7e1c.assembly.stream	cpe:/a:redhat:openshift:4.15::el8	RHSA-2023:7198	2024-02-27T00:00:00Z
openshift4/ose-azure-file-csi-driver-rhel9:v4.15.0-202401261531.p0.g364d90d.assembly.stream	cpe:/a:redhat:openshift:4.15::el8	RHSA-2023:7198	2024-02-27T00:00:00Z
openshift4/ose-csi-external-provisioner:v4.15.0-202402082307.p0.gce5a1a3.assembly.stream.el8	cpe:/a:redhat:openshift:4.15::el8	RHSA-2023:7198	2024-02-27T00:00:00Z
openshift4/ose-csi-external-provisioner-rhel8:v4.15.0-202402082307.p0.gce5a1a3.assembly.stream.el8	cpe:/a:redhat:openshift:4.15::el8	RHSA-2023:7198	2024-02-27T00:00:00Z
openshift4/ose-ibmcloud-cluster-api-controllers-rhel9:v4.15.0-202402191538.p0.g34fb625.assembly.stream.el9	cpe:/a:redhat:openshift:4.15::el8	RHSA-2023:7198	2024-02-27T00:00:00Z
openshift4/ose-olm-rukpak-rhel8:v4.15.0-202402082307.p0.g36acf8d.assembly.stream.el8	cpe:/a:redhat:openshift:4.15::el8	RHSA-2023:7198	2024-02-27T00:00:00Z
openshift4/ose-vsphere-csi-driver-syncer-rhel9:v4.15.0-202401261531.p0.g74481e3.assembly.stream	cpe:/a:redhat:openshift:4.15::el8	RHSA-2023:7198	2024-02-27T00:00:00Z
podman-3:4.4.1-21.rhaos4.15.el8	cpe:/a:redhat:openshift:4.15::el8	RHSA-2023:7201	2024-02-27T00:00:00Z
openshift4/ose-aws-efs-csi-driver-container-rhel8:v4.15.0-202402051038.p0.g5af4e87.assembly.stream	cpe:/a:redhat:openshift:4.15::el8	RHSA-2024:0766	2024-02-28T00:00:00Z
openshift4/ose-baremetal-installer-rhel8:v4.15.0-202406251908.p0.g132530d.assembly.stream.el8	cpe:/a:redhat:openshift:4.15::el8	RHSA-2024:4151	2024-07-02T00:00:00Z
openshift4/ose-installer:v4.15.0-202406251908.p0.g132530d.assembly.stream.el8	cpe:/a:redhat:openshift:4.15::el8	RHSA-2024:4151	2024-07-02T00:00:00Z
openshift4/ose-installer-artifacts:v4.15.0-202406251908.p0.g132530d.assembly.stream.el8	cpe:/a:redhat:openshift:4.15::el8	RHSA-2024:4151	2024-07-02T00:00:00Z
openshift4/egress-router-cni-rhel8:v4.15.0-202407302337.p0.gf8ec690.assembly.stream.el8	cpe:/a:redhat:openshift:4.15::el8	RHSA-2024:4955	2024-08-07T00:00:00Z
openshift4/ose-node-feature-discovery-rhel9:v4.15.0-202401311148.p0.ge4929ab.assembly.stream	cpe:/a:redhat:openshift:4.15::el9	RHSA-2023:7197	2024-02-27T00:00:00Z
openshift4-wincw/windows-machine-config-operator-bundle:v10.15.0-43	cpe:/a:redhat:openshift:4.15::el9	RHSA-2024:0954	2024-02-27T00:00:00Z
openshift4-wincw/windows-machine-config-rhel9-operator:10.15.0-46	cpe:/a:redhat:openshift:4.15::el9	RHSA-2024:0954	2024-02-27T00:00:00Z
openshift4/ose-cluster-capi-rhel9-operator:v4.15.0-202403050707.p0.gc8c94ba.assembly.stream.el9	cpe:/a:redhat:openshift:4.15::el9	RHSA-2024:1210	2024-03-13T00:00:00Z
openshift4/ose-machine-api-provider-azure-rhel9:v4.15.0-202403050707.p0.g90771ab.assembly.stream.el9	cpe:/a:redhat:openshift:4.15::el9	RHSA-2024:1210	2024-03-13T00:00:00Z
openshift4/ose-vsphere-cluster-api-controllers-rhel9:v4.15.0-202403050707.p0.g2070c13.assembly.stream.el9	cpe:/a:redhat:openshift:4.15::el9	RHSA-2024:1210	2024-03-13T00:00:00Z
openshift4/ose-ptp-rhel9:v4.15.0-202408130908.p0.gcb7ef64.assembly.stream.el9	cpe:/a:redhat:openshift:4.15::el9	RHSA-2024:5438	2024-08-21T00:00:00Z
Red Hat OpenShift Container Platform 4.16
openshift4/ose-aws-efs-csi-driver-container-rhel9:v4.16.0-202406131906.p0.gbe9a76c.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0040	2024-06-27T00:00:00Z
openshift4/ose-node-feature-discovery-rhel9:v4.16.0-202406131906.p0.gb93abef.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0040	2024-06-27T00:00:00Z
openshift4/ose-ptp-rhel9:v4.16.0-202406131906.p0.g4447317.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0040	2024-06-27T00:00:00Z
openshift4/ose-aws-ebs-csi-driver-rhel9:v4.16.0-202406131906.p0.g1d29a74.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0041	2024-06-27T00:00:00Z
openshift4/ose-azure-cluster-api-controllers-rhel9:v4.16.0-202406131906.p0.gface7da.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0041	2024-06-27T00:00:00Z
openshift4/ose-azure-disk-csi-driver-rhel9:v4.16.0-202406131906.p0.g6b55f6f.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0041	2024-06-27T00:00:00Z
openshift4/ose-azure-file-csi-driver-rhel9:v4.16.0-202406131906.p0.g5ceb190.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0041	2024-06-27T00:00:00Z
openshift4/ose-cluster-capi-rhel9-operator:v4.16.0-202406131906.p0.ga24f1ae.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0041	2024-06-27T00:00:00Z
openshift4/ose-csi-external-provisioner-rhel9:v4.16.0-202406131906.p0.g9e8af01.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0041	2024-06-27T00:00:00Z
openshift4/ose-machine-api-provider-azure-rhel9:v4.16.0-202406131906.p0.gd6be293.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0041	2024-06-27T00:00:00Z
openshift4/ose-powervs-block-csi-driver-rhel9:v4.16.0-202406131906.p0.g730a473.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0041	2024-06-27T00:00:00Z
openshift4/ose-vsphere-cluster-api-controllers-rhel9:v4.16.0-202406131906.p0.gbe22f10.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0041	2024-06-27T00:00:00Z
openshift4/ose-vsphere-csi-driver-syncer-rhel9:v4.16.0-202406131906.p0.g3cd689f.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:0041	2024-06-27T00:00:00Z
openshift4/egress-router-cni-rhel9:v4.16.0-202407180206.p0.g7089efe.assembly.stream.el9	cpe:/a:redhat:openshift:4.16::el9	RHSA-2024:4613	2024-07-24T00:00:00Z
Red Hat OpenShift Container Platform 4.17
openshift4/egress-router-cni-rhel9:v4.17.0-202409100034.p0.g3193a75.assembly.stream.el9	cpe:/a:redhat:openshift:4.17::el9	RHSA-2024:3718	2024-10-01T00:00:00Z
openshift4/ose-docker-builder-rhel9:v4.17.0-202409122005.p1.gcfcf3bd.assembly.stream.el9	cpe:/a:redhat:openshift:4.17::el9	RHSA-2024:3718	2024-10-01T00:00:00Z
Red Hat OpenStack Platform 16.2
rhosp-rhel8/osp-director-agent:1.3.0-14	cpe:/a:redhat:openstack:16.2::el8	RHSA-2024:3479	2024-05-29T00:00:00Z
rhosp-rhel8/osp-director-downloader:1.3.0-14	cpe:/a:redhat:openstack:16.2::el8	RHSA-2024:3479	2024-05-29T00:00:00Z
rhosp-rhel8/osp-director-operator:1.3.0-12	cpe:/a:redhat:openstack:16.2::el8	RHSA-2024:3479	2024-05-29T00:00:00Z
rhosp-rhel8/osp-director-operator-bundle:1.3.0-26	cpe:/a:redhat:openstack:16.2::el8	RHSA-2024:3479	2024-05-29T00:00:00Z
Red Hat OpenStack Platform 17.1 for RHEL 8
python-paramiko-0:2.11.0-2.el8ost	cpe:/a:redhat:openstack:17.1::el8	RHSA-2024:2768	2024-05-22T00:00:00Z
Red Hat OpenStack Platform 17.1 for RHEL 9
rhosp-rhel9/osp-director-agent:1.3.1-15	cpe:/a:redhat:openstack:17.1::el9	RHSA-2024:2728	2024-05-29T00:00:00Z
rhosp-rhel9/osp-director-downloader:1.3.1-13	cpe:/a:redhat:openstack:17.1::el9	RHSA-2024:2728	2024-05-29T00:00:00Z
rhosp-rhel9/osp-director-operator:1.3.1-15	cpe:/a:redhat:openstack:17.1::el9	RHSA-2024:2728	2024-05-29T00:00:00Z
rhosp-rhel9/osp-director-operator-bundle:1.3.1-27	cpe:/a:redhat:openstack:17.1::el9	RHSA-2024:2728	2024-05-29T00:00:00Z
python-paramiko-0:2.11.0-2.el9ost	cpe:/a:redhat:openstack:17.1::el9	RHSA-2024:2735	2024-05-22T00:00:00Z
RHBOAC camel-quarkus 3 (camel-4.0/quarkus-3.2)
	cpe:/a:redhat:camel_quarkus:3	RHSA-2024:0789	2024-02-12T00:00:00Z
RHEL-9-CNV-4.15
container-native-virtualization/cluster-network-addons-operator-rhel9:v4.15.3-7	cpe:/a:redhat:container_native_virtualization:4.15::el9	RHSA-2024:4662	2024-07-18T00:00:00Z
RHODF-4.15-RHEL-9
odf4/cephcsi-rhel9:v4.15.0-37	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/mcg-core-rhel9:v4.15.0-68	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/mcg-operator-bundle:v4.15.0-158	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/mcg-rhel9-operator:v4.15.0-39	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/ocs-client-console-rhel9:v4.15.0-58	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/ocs-client-operator-bundle:v4.15.0-158	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/ocs-client-rhel9-operator:v4.15.0-13	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/ocs-metrics-exporter-rhel9:v4.15.0-81	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/ocs-operator-bundle:v4.15.0-158	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/ocs-rhel9-operator:v4.15.0-79	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odf-cli-rhel9:v4.15.0-22	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odf-console-rhel9:v4.15.0-57	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odf-cosi-sidecar-rhel9:v4.15.0-6	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odf-csi-addons-operator-bundle:v4.15.0-158	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odf-csi-addons-rhel9-operator:v4.15.0-15	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odf-csi-addons-sidecar-rhel9:v4.15.0-15	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odf-multicluster-console-rhel9:v4.15.0-54	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odf-multicluster-operator-bundle:v4.15.0-158	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odf-multicluster-rhel9-operator:v4.15.0-10	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odf-must-gather-rhel9:v4.15.0-26	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odf-operator-bundle:v4.15.0-158	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odf-rhel9-operator:v4.15.0-19	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odr-cluster-operator-bundle:v4.15.0-158	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odr-hub-operator-bundle:v4.15.0-158	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/odr-rhel9-operator:v4.15.0-21	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
odf4/rook-ceph-rhel9-operator:v4.15.0-103	cpe:/a:redhat:openshift_data_foundation:4.15::el9	RHSA-2024:1383	2024-03-19T00:00:00Z
RHOSS-1.31-RHEL-8
openshift-serverless-1/client-kn-rhel8:1.10.0-5	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-apiserver-receive-adapter-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-controller-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-in-memory-channel-controller-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-in-memory-channel-dispatcher-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-istio-controller-rhel8:1.10.0-5	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-controller-rhel8:1.10.0-3	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-dispatcher-rhel8:1.10.0-3	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-post-install-rhel8:1.10.0-3	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-receiver-rhel8:1.10.0-3	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-kafka-broker-webhook-rhel8:1.10.0-3	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-mtbroker-filter-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-mtbroker-ingress-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-mtchannel-broker-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-mtping-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-storage-version-migration-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/eventing-webhook-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/func-utils-rhel8:1.31.1-2	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/ingress-rhel8-operator:1.31.1-2	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/knative-rhel8-operator:1.31.1-2	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/kn-cli-artifacts-rhel8:1.10.0-3	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/kourier-control-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/net-istio-controller-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/net-istio-webhook-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/serverless-operator-bundle:1.31.1-1	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/serverless-rhel8-operator:1.31.1-2	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/serving-activator-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/serving-autoscaler-hpa-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/serving-autoscaler-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/serving-controller-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/serving-domain-mapping-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/serving-domain-mapping-webhook-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/serving-queue-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/serving-storage-version-migration-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/serving-webhook-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1/svls-must-gather-rhel8:1.31.1-2	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1-tech-preview/eventing-istio-controller-rhel8:1.10.0-5	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1-tech-preview/knative-client-plugin-event-sender-rhel8:1.10.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1-tech-preview/logic-swf-builder-rhel8:1.31.0-5	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z
openshift-serverless-1-tech-preview/logic-swf-devmode-rhel8:1.31.0-4	cpe:/a:redhat:openshift_serverless:1.31::el8	RHSA-2024:0843	2024-02-15T00:00:00Z

No data available yet.

Remediation

No vendor fix or workaround currently provided.

Additional remediation guidance may be available on OpenCVE Cloud.

Tracking

Sign in to view the affected projects.

Advisories

Source	ID	Title
Debian DLA	DLA-3694-1	openssh security update
Debian DLA	DLA-3718-1	php-phpseclib security update
Debian DLA	DLA-3719-1	phpseclib security update
Debian DLA	DLA-3730-1	python-asyncssh security update
Debian DLA	DLA-3794-1	putty security update
Debian DLA	DLA-3899-1	python-asyncssh security update
Debian DLA	DLA-3975-1	proftpd-dfsg security update
Debian DLA	DLA-4132-1	erlang security update
Debian DSA	DSA-5586-1	openssh security update
Debian DSA	DSA-5588-1	putty security update
Debian DSA	DSA-5591-1	libssh security update
Debian DSA	DSA-5599-1	phpseclib security update
Debian DSA	DSA-5600-1	php-phpseclib security update
Debian DSA	DSA-5601-1	php-phpseclib3 security update
Debian DSA	DSA-5750-1	python-asyncssh security update
Debian DSA	DSA-5906-1	erlang security update
Github GHSA	GHSA-45x7-px36-x8w8	Prefix Truncation Attack against ChaCha20-Poly1305 and Encrypt-then-MAC aka Terrapin
Ubuntu USN	USN-6560-1	OpenSSH vulnerabilities
Ubuntu USN	USN-6561-1	libssh vulnerability
Ubuntu USN	USN-6560-2	OpenSSH vulnerabilities
Ubuntu USN	USN-6585-1	libssh2 vulnerability
Ubuntu USN	USN-6589-1	FileZilla vulnerability
Ubuntu USN	USN-6598-1	Paramiko vulnerability
Ubuntu USN	USN-6738-1	LXD vulnerability
Ubuntu USN	USN-7051-1	AsyncSSH vulnerability
Ubuntu USN	USN-7292-1	Dropbear vulnerabilities
Ubuntu USN	USN-7297-1	ProFTPD vulnerabilities

No CVSS v4.0

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

No CVSS v3.0

No CVSS v2

This CVE is not in the KEV list.

The EPSS score is 0.52606.

Exploitation poc

Automatable no

Technical Impact partial

References

Link	Providers
http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html
http://seclists.org/fulldisclosure/2024/Mar/21
http://www.openwall.com/lists/oss-security/2023/12/18/3
http://www.openwall.com/lists/oss-security/2023/12/19/5
http://www.openwall.com/lists/oss-security/2023/12/20/3
http://www.openwall.com/lists/oss-security/2024/03/06/3
http://www.openwall.com/lists/oss-security/2024/04/17/8
https://access.redhat.com/security/cve/cve-2023-48795
https://access.redhat.com/solutions/7071748
https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/
https://bugs.gentoo.org/920280
https://bugzilla.redhat.com/show_bug.cgi?id=2254210
https://bugzilla.suse.com/show_bug.cgi?id=1217950
https://cert-portal.siemens.com/productcert/html/ssa-082556.html
https://cert-portal.siemens.com/productcert/html/ssa-364175.html
https://cert-portal.siemens.com/productcert/html/ssa-769027.html
https://cert-portal.siemens.com/productcert/html/ssa-794697.html
https://cert-portal.siemens.com/productcert/html/ssa-915275.html
https://crates.io/crates/thrussh/versions
https://filezilla-project.org/versions.php
https://forum.netgate.com/topic/184941/terrapin-ssh-attack
https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6
https://github.com/NixOS/nixpkgs/pull/275249
https://github.com/PowerShell/Win32-OpenSSH/issues/2189
https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta
https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0
https://github.com/TeraTermProject/teraterm/releases/tag/v5.1
https://github.com/advisories/GHSA-45x7-px36-x8w8
https://github.com/apache/mina-sshd/issues/445
https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab
https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22
https://github.com/cyd01/KiTTY/issues/520
https://github.com/drakkan/sftpgo/releases/tag/v2.5.6
https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42
https://github.com/erlang/otp/releases/tag/OTP-26.2.1
https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d
https://github.com/hierynomus/sshj/issues/916
https://github.com/janmojzis/tinyssh/issues/81
https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5
https://github.com/libssh2/libssh2/pull/1291
https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25
https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3
https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15
https://github.com/mwiede/jsch/issues/457
https://github.com/mwiede/jsch/pull/461
https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16
https://github.com/openssh/openssh-portable/commits/master
https://github.com/paramiko/paramiko/issues/2337
https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES
https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES
https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES
https://github.com/proftpd/proftpd/issues/456
https://github.com/rapier1/hpn-ssh/releases
https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst
https://github.com/ronf/asyncssh/tags
https://github.com/ssh-mitm/ssh-mitm/issues/165
https://github.com/warp-tech/russh/releases/tag/v0.40.2
https://gitlab.com/libssh/libssh-mirror/-/tags
https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ
https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg
https://help.panic.com/releasenotes/transmit5/
https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/
https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html
https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html
https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html
https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html
https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html
https://lists.debian.org/debian-lts-announce/2024/11/msg00032.html
https://lists.debian.org/debian-lts-announce/2025/04/msg00028.html
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/
https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/
https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/
https://matt.ucc.asn.au/dropbear/CHANGES
https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC
https://news.ycombinator.com/item?id=38684904
https://news.ycombinator.com/item?id=38685286
https://news.ycombinator.com/item?id=38732005
https://nova.app/releases/#v11.8
https://nvd.nist.gov/vuln/detail/CVE-2023-48795
https://oryx-embedded.com/download/#changelog
https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002
https://roumenpetrov.info/secsh/#news20231220
https://security-tracker.debian.org/tracker/CVE-2023-48795
https://security-tracker.debian.org/tracker/source-package/libssh2
https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg
https://security-tracker.debian.org/tracker/source-package/trilead-ssh2
https://security.gentoo.org/glsa/202312-16
https://security.gentoo.org/glsa/202312-17
https://security.netapp.com/advisory/ntap-20240105-0004/
https://support.apple.com/kb/HT214084
https://terrapin-attack.com/
https://thorntech.com/cve-2023-48795-and-sftp-gateway/
https://twitter.com/TrueSkrillor/status/1736774389725565005
https://ubuntu.com/security/CVE-2023-48795
https://winscp.net/eng/docs/history#6.2.2
https://www.bitvise.com/ssh-client-version-history#933
https://www.bitvise.com/ssh-server-version-history
https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html
https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update
https://www.cve.org/CVERecord?id=CVE-2023-48795
https://www.debian.org/security/2023/dsa-5586
https://www.debian.org/security/2023/dsa-5588
https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc
https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508
https://www.netsarang.com/en/xshell-update-history/
https://www.openssh.com/openbsd.html
https://www.openssh.com/txt/release-9.6
https://www.openwall.com/lists/oss-security/2023/12/18/2
https://www.openwall.com/lists/oss-security/2023/12/20/3
https://www.paramiko.org/changelog.html
https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/
https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/
https://www.terrapin-attack.com
https://www.theregister.com/2023/12/20/terrapin_attack_ssh
https://www.vandyke.com/products/securecrt/history.txt
https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit
https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability

History

Tue, 12 May 2026 11:30:00 +0000

Type	Values Removed	Values Added
References		https://cert-portal.siemens.com/productcert/html/ssa-082556.html https://cert-portal.siemens.com/productcert/html/ssa-364175.html https://cert-portal.siemens.com/productcert/html/ssa-769027.html https://cert-portal.siemens.com/productcert/html/ssa-794697.html https://cert-portal.siemens.com/productcert/html/ssa-915275.html

Tue, 04 Nov 2025 22:30:00 +0000

Type	Values Removed	Values Added
References		https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/

Tue, 04 Nov 2025 19:30:00 +0000

Type	Values Removed	Values Added
References		https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/ https://lists.fedoraproject.org/archives/list/package-announce@lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/

Mon, 03 Nov 2025 22:30:00 +0000

Type	Values Removed	Values Added
References		https://lists.debian.org/debian-lts-announce/2024/09/msg00042.html https://lists.debian.org/debian-lts-announce/2024/11/msg00032.html

Mon, 03 Nov 2025 20:30:00 +0000

Type	Values Removed	Values Added
References		https://lists.debian.org/debian-lts-announce/2025/04/msg00028.html

Wed, 27 Aug 2025 21:15:00 +0000

Type	Values Removed	Values Added
Metrics		ssvc `{'options': {'Automatable': 'no', 'Exploitation': 'poc', 'Technical Impact': 'partial'}, 'version': '2.0.3'}`

Wed, 16 Jul 2025 13:45:00 +0000

Type	Values Removed	Values Added
Metrics	epss `{'score': 0.66819}`	epss `{'score': 0.75226}`

Fri, 23 May 2025 02:45:00 +0000

Type	Values Removed	Values Added
CPEs	cpe:2.3:a:microsoft:powershell::::::::
Vendors & Products	Microsoft Microsoft powershell

Wed, 14 May 2025 20:30:00 +0000

Type	Values Removed	Values Added
References		https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability

Thu, 08 May 2025 14:30:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:ceph_storage:7.1::el8

Wed, 02 Oct 2024 02:15:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:openshift:4.17::el9

Thu, 22 Aug 2024 06:15:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:openshift:4.14::el9

Mon, 19 Aug 2024 22:30:00 +0000

Type	Values Removed	Values Added
CPEs		cpe:/a:redhat:openshift:4.12::el8

Subscriptions

9bis Kitty

Apache Sshd Sshj

Apple Macos

Asyncssh Project Asyncssh

Bitvise Ssh Client Ssh Server

Connectbot Sshlib

Crates Thrussh

Crushftp Crushftp

Debian Debian Linux

Dropbear Ssh Project Dropbear Ssh

Erlang Erlang\/otp

Fedoraproject Fedora

Filezilla-project Filezilla Client

Freebsd Freebsd

Gentoo Security

Golang Crypto

Jadaptive Maverick Synergy Java Ssh Api

Lancom-systems Lanconfig Lcos Lcos Fx Lcos Lx Lcos Sx

Libssh Libssh

Libssh2 Libssh2

Matez Jsch

Net-ssh Net-ssh

Netgate Pfsense Ce Pfsense Plus

Netsarang Xshell 7

Openbsd Openssh

Oryx-embedded Cyclone Ssh

Panic Nova Transmit 5

Paramiko Paramiko

Proftpd Proftpd

Putty Putty

Redhat Advanced Cluster Security Camel Quarkus Ceph Storage Cert-manager Operator For Red Hat Openshift Container Native Virtualization Discovery Enterprise Linux Jboss Enterprise Application Platform Keycloak Ocp Tools Openshift Openshift Api Data Protection Openshift Api For Data Protection Openshift Builds Openshift Container Platform Openshift Data Foundation Openshift Dev Spaces Openshift Developer Tools And Services Openshift Gitops Openshift Pipelines Openshift Serverless Openshift Virtualization Openstack Openstack Platform Rhel Eus Serverless Single Sign-on Storage

Roumenpetrov Pkixssh

Russh Project Russh

Sftpgo Project Sftpgo

Ssh Ssh

Ssh2 Project Ssh2

Tera Term Project Tera Term

Thorntech Sftp Gateway Firmware

Tinyssh Tinyssh

Trilead Ssh2

Vandyke Securecrt

Winscp Winscp

MITRE

Status: PUBLISHED

Assigner: mitre

Published: 2023-12-18T00:00:00.000Z

Updated: 2026-05-12T11:02:25.905Z

Reserved: 2023-11-20T00:00:00.000Z

Link: CVE-2023-48795

Vulnrichment

Updated: 2025-11-04T22:05:21.417Z

NVD

Status : Modified

Published: 2023-12-18T16:15:10.897

Modified: 2026-05-12T11:16:15.010

Link: CVE-2023-48795

Redhat

Severity : Moderate

Publid Date: 2023-12-18T00:00:00Z

Links: CVE-2023-48795 - Bugzilla

OpenCVE Enrichment

No data.

Weaknesses

Tracking

Attack Vector Network

Attack Complexity High

Privileges Required None

Scope Unchanged

Confidentiality Impact None

Integrity Impact High

Availability Impact None

User Interaction None

Exploitation poc

Automatable no

Technical Impact partial

Subscriptions

JSON object

JSON object

JSON object

JSON object

JSON object