Every CVE whose affected-product data names Openbsd Openssh, ordered by CVSS severity, with EPSS exploit prediction and CISA KEV status.
CVEs (126)
CVE-2003-0786 — CVSS 10.0 (critical): The SSH1 PAM challenge response authentication in OpenSSH 3.7.1 and 3.7.1p1, when Privilege Separation is disabled, does not check the…
CVE-2002-0640 — CVSS 10.0 (critical): Buffer overflow in sshd in OpenSSH 2.3.1 through 3.3 may allow remote attackers to execute arbitrary code via a large number of responses…
CVE-2001-0144 — CVSS 10.0 (critical): CORE SDI SSH1 CRC-32 compensation attack detector allows remote attackers to execute arbitrary commands on an SSH server or client via an…
CVE-2000-0525 — CVSS 10.0 (critical): OpenSSH does not properly drop privileges when the UseLogin option is enabled, which allows local users to execute arbitrary commands by…
CVE-2000-0999 — CVSS 10.0 (critical): Format string vulnerabilities in OpenBSD ssh program (and possibly other BSD-based operating systems) allow attackers to gain root…
CVE-2003-0693 — CVSS 10.0 (critical): A "buffer management error" in buffer_append_space of buffer.c for OpenSSH before 3.7 may allow remote attackers to execute arbitrary code…
CVE-2002-0639 — CVSS 9.8 (critical): Integer overflow in sshd in OpenSSH 2.9.9 through 3.3 allows remote attackers to execute arbitrary code during challenge response…
CVE-2023-28531 — CVSS 9.8 (critical): ssh-add in OpenSSH before 9.3 adds smartcard keys to ssh-agent without the intended per-hop destination constraints. The earliest affected…
CVE-2023-38408 — CVSS 9.8 (critical): The PKCS#11 feature in ssh-agent in OpenSSH before 9.3p2 has an insufficiently trustworthy search path, leading to remote code execution if…
CVE-2016-1908 — CVSS 9.8 (critical): The client in OpenSSH before 7.2 mishandles failed cookie generation for untrusted X11 forwarding and relies on the local X11 server for…
CVE-2010-4478 — CVSS 9.8 (critical): OpenSSH 5.6 and earlier, when J-PAKE is enabled, does not properly validate the public parameters in the J-PAKE protocol, which allows…
CVE-2002-0083 — CVSS 9.8 (critical): Off-by-one error in the channel code of OpenSSH 2.0 through 3.0.2 allows local users or remote malicious servers to gain privileges.
CVE-2008-3844 — CVSS 9.3 (critical): Certain Red Hat Enterprise Linux (RHEL) 4 and 5 packages for OpenSSH, as signed in August 2008 using a legitimate Red Hat GPG key, contain…
CVE-2016-0778 — CVSS 8.1 (high): The (1) roaming_read and (2) roaming_write functions in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2, when…
CVE-2024-6387 — CVSS 8.1 (high): A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle…
CVE-2006-5051 — CVSS 8.1 (high): Signal handler race condition in OpenSSH before 4.4 allows remote attackers to cause a denial of service (crash), and possibly execute…
CVE-2015-5600 — CVSS 8.1 (high): The kbdint_next_device function in auth2-chall.c in sshd in OpenSSH through 6.9 does not properly restrict the processing of…
CVE-2006-4924 — CVSS 7.8 (high): sshd in OpenSSH before 4.4, when using the version 1 SSH protocol, allows remote attackers to cause a denial of service (CPU consumption)…
CVE-2019-16905 — CVSS 7.8 (high): OpenSSH 7.7 through 7.9 and 8.x before 8.1, when compiled with an experimental key type, has a pre-authentication integer overflow if a…
CVE-2016-10012 — CVSS 7.8 (high): The shared memory manager (associated with pre-authentication compression) in sshd in OpenSSH before 7.4 does not ensure that a bounds…
CVE-2015-8325 — CVSS 7.8 (high): The do_setup_env function in session.c in sshd in OpenSSH through 7.2p2, when the UseLogin feature is enabled and PAM is configured to read…
CVE-2003-1562 — CVSS 7.6 (high): sshd in OpenSSH 3.6.1p2 and earlier, when PermitRootLogin is disabled and using PAM keyboard-interactive authentication, does not insert a…
CVE-2002-0575 — CVSS 7.5 (high): Buffer overflow in OpenSSH before 2.9.9, and 3.x before 3.2.1, with Kerberos/AFS support and KerberosTgtPassing or AFSTokenPassing enabled…
CVE-2026-35385 — CVSS 7.5 (high): In OpenSSH before 10.3, a file downloaded by scp may be installed setuid or setgid, an outcome contrary to some users' expectations, if the…
CVE-2026-3497 — CVSS 7.5 (high): Vulnerability in the OpenSSH GSSAPI delta included in various Linux distributions. This vulnerability affects the GSSAPI patches added by…
CVE-2000-1169 — CVSS 7.5 (high): OpenSSH SSH client before 2.3.0 does not properly disable X11 or agent forwarding, which could allow a malicious SSH server to gain access…
CVE-2001-0572 — CVSS 7.5 (high): The SSH protocols 1 and 2 (aka SSH-2) as implemented in OpenSSH and other packages have various weaknesses which can allow a remote…
CVE-2001-0816 — CVSS 7.5 (high): OpenSSH before 2.9.9, when running sftp using sftp-server and using restricted keypairs, allows remote authenticated users to bypass…
CVE-2001-1380 — CVSS 7.5 (high): OpenSSH before 2.9.9, while using keypairs and multiple keys of different types in the ~/.ssh/authorized_keys2 file, may not properly…
CVE-2001-1459 — CVSS 7.5 (high): OpenSSH 2.9 and earlier does not initiate a Pluggable Authentication Module (PAM) session if commands are executed with no pty, which…
CVE-2001-1507 — CVSS 7.5 (high): OpenSSH before 3.0.1 with Kerberos V enabled does not properly authenticate users, which could allow remote attackers to login unchallenged.
CVE-2002-0765 — CVSS 7.5 (high): sshd in OpenSSH 3.2.2, when using YP with netgroups and under certain conditions, may allow users to successfully authenticate and log in…
CVE-2003-0386 — CVSS 7.5 (high): OpenSSH 3.6.1 and earlier, when restricting host access by numeric IP addresses and with VerifyReverseMapping disabled, allows remote…
CVE-2003-0682 — CVSS 7.5 (high): "Memory bugs" in OpenSSH 3.7.1 and earlier, with unknown impact, a different set of vulnerabilities than CVE-2003-0693 and CVE-2003-0695.
CVE-2003-0695 — CVSS 7.5 (high): Multiple "buffer management errors" in OpenSSH before 3.7.1 may allow attackers to cause a denial of service or execute arbitrary code…
CVE-2003-0787 — CVSS 7.5 (high): The PAM conversation function in OpenSSH 3.7.1 and 3.7.1p1 interprets an array of structures as an array of pointers, which allows…
CVE-2020-12062 — CVSS 7.5 (high): The scp client in OpenSSH 8.2 incorrectly sends duplicate responses to the server upon a utimes system call failure, which allows a…
CVE-2006-5794 — CVSS 7.5 (high): Unspecified vulnerability in the sshd Privilege Separation Monitor in OpenSSH before 4.5 causes weaker verification that authentication has…
CVE-2007-4752 — CVSS 7.5 (high): ssh in OpenSSH before 4.7 does not properly handle when an untrusted cookie cannot be created and uses a trusted X11 cookie instead, which…
CVE-2016-8858 — CVSS 7.5 (high): The kex_input_kexinit function in kex.c in OpenSSH 6.x and 7.x through 7.3 allows remote attackers to cause a denial of service (memory…
CVE-2016-6515 — CVSS 7.5 (high): The auth_password function in auth-passwd.c in sshd in OpenSSH before 7.3 does not limit password lengths for password authentication…
CVE-2010-5107 — CVSS 7.5 (high): The default configuration of OpenSSH through 6.1 enforces a fixed time limit between establishing a TCP connection and completing a login…
CVE-2011-0539 — CVSS 7.5 (high): The key_certify function in usr.bin/ssh/key.c in OpenSSH 5.6 and 5.7, when generating legacy certificates using the -t command-line option…
CVE-2016-10708 — CVSS 7.5 (high): sshd in OpenSSH before 7.4 allows remote attackers to cause a denial of service (NULL pointer dereference and daemon crash) via an…
CVE-2020-15778 — CVSS 7.4 (high): scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the…
CVE-2014-1692 — CVSS 7.3 (high): The hash_buffer function in schnorr.c in OpenSSH through 6.4, when Makefile.inc is modified to enable the J-PAKE protocol, does not…
CVE-2016-10009 — CVSS 7.3 (high): Untrusted search path vulnerability in ssh-agent.c in ssh-agent in OpenSSH before 7.4 allows remote attackers to execute arbitrary local…
CVE-2015-6565 — CVSS 7.2 (high): sshd in OpenSSH 6.8 and 6.9 uses world-writable permissions for TTY devices, which allows local users to cause a denial of service…
CVE-2001-0529 — CVSS 7.2 (high): OpenSSH version 2.9 and earlier, with X forwarding enabled, allows a local attacker to delete any file named 'cookies' via a symlink attack.
CVE-2001-0872 — CVSS 7.2 (high): OpenSSH 3.0.1 and earlier with UseLogin enabled does not properly cleanse critical environment variables such as LD_PRELOAD, which allows…
CVE-2021-28041 — CVSS 7.1 (high): ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket…
CVE-2016-10010 — CVSS 7.0 (high): sshd in OpenSSH before 7.4, when privilege separation is not used, creates forwarded Unix-domain sockets as root, which might allow local…
CVE-2015-6564 — CVSS 7.0 (high): Use-after-free vulnerability in the mm_answer_pam_free_ctx function in monitor.c in sshd in OpenSSH before 7.0 on non-OpenBSD platforms…
CVE-2023-51767 — CVSS 7.0 (high): OpenSSH through 10.0, when common types of DRAM are used, might allow row hammer attacks (for authentication bypass) because the integer…
CVE-2021-41617 — CVSS 7.0 (high): sshd in OpenSSH 6.2 through 8.x before 8.8, when certain non-default configurations are used, allows privilege escalation because…
CVE-2009-2904 — CVSS 6.9 (medium): A certain Red Hat modification to the ChrootDirectory feature in OpenSSH 4.8, as used in sshd in OpenSSH 4.3 in Red Hat Enterprise Linux…
CVE-2008-1483 — CVSS 6.9 (medium): OpenSSH 4.3p2, and probably other versions, allows local users to hijack forwarded X connections by causing ssh to set DISPLAY to :10, even…
CVE-2004-2760 — CVSS 6.8 (medium): sshd in OpenSSH 3.5p1, when PermitRootLogin is disabled, immediately closes the TCP connection after a root login attempt with the correct…
CVE-2019-6109 — CVSS 6.8 (medium): An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle…
CVE-2025-26465 — CVSS 6.8 (medium): A vulnerability was found in OpenSSH when the VerifyHostKeyDNS option is enabled. A machine-in-the-middle attack can be performed by a…
CVE-2001-1585 — CVSS 6.8 (medium): SSH protocol 2 (aka SSH-2) public key authentication in the development snapshot of OpenSSH 2.3.1, available from 2001-01-18 through…
CVE-2019-6110 — CVSS 6.8 (medium): In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker)…
CVE-2016-0777 — CVSS 6.5 (medium): The resend_bytes function in roaming_common.c in the client in OpenSSH 5.x, 6.x, and 7.x before 7.1p2 allows remote servers to obtain…
CVE-2008-1657 — CVSS 6.5 (medium): OpenSSH 4.4 up to versions before 4.9 allows remote authenticated users to bypass the sshd_config ForceCommand directive by modifying the…
CVE-2012-0814 — CVSS 6.5 (medium): The auth_parse_options function in auth-options.c in sshd in OpenSSH before 5.7 provides debug messages containing authorized_keys command…
CVE-2023-51385 — CVSS 6.5 (medium): In ssh in OpenSSH before 9.6, OS command injection might occur if a user name or host name has shell metacharacters, and this name is…
CVE-2014-2653 — CVSS 6.5 (medium): The verify_host_key function in sshconnect.c in the client in OpenSSH 6.6 and earlier allows remote servers to trigger the skipping of…
CVE-2023-25136 — CVSS 6.5 (medium): OpenSSH server (sshd) 9.1 introduced a double-free vulnerability during options.kex_algorithms handling. This is fixed in OpenSSH 9.2. The…
CVE-2008-3234 — CVSS 6.5 (medium): sshd in OpenSSH 4 on Debian GNU/Linux, and the 20070303 OpenSSH snapshot, allows remote authenticated users to obtain access to arbitrary…
CVE-2015-6563 — CVSS 6.4 (medium): The monitor component in sshd in OpenSSH before 7.0 on non-OpenBSD platforms accepts extraneous username data in MONITOR_REQ_PAM_INIT_CTX…
CVE-2016-3115 — CVSS 6.4 (medium): Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended…
CVE-2004-1653 — CVSS 6.4 (medium): The default configuration for OpenSSH enables AllowTcpForwarding, which could allow remote authenticated users to perform a port bounce…
CVE-2016-10011 — CVSS 6.2 (medium): authfile.c in sshd in OpenSSH before 7.4 does not properly consider the effects of realloc on buffer contents, which might allow local…
CVE-2013-4548 — CVSS 6.0 (medium): The mm_newkeys_from_blob function in monitor_wrap.c in sshd in OpenSSH 6.2 and 6.3, when an AES-GCM cipher is used, does not properly…
CVE-2020-14145 — CVSS 5.9 (medium): The client side in OpenSSH 5.7 through 8.4 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This…
CVE-2019-6111 — CVSS 5.9 (medium): An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which…
CVE-2016-6210 — CVSS 5.9 (medium): sshd in OpenSSH before 7.3, when SHA256 or SHA512 are used for user password hashing, uses BLOWFISH hashing on a static password when the…
CVE-2025-26466 — CVSS 5.9 (medium): A flaw was found in the OpenSSH package. For each ping packet the SSH server receives, a pong packet is allocated in a memory buffer and…
CVE-2023-48795 — CVSS 5.9 (medium): The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to…
CVE-2011-4327 — CVSS 5.5 (medium): ssh-keysign.c in ssh-keysign in OpenSSH before 5.8p2 on certain platforms executes ssh-rand-helper with unintended open file descriptors…
CVE-2023-51384 — CVSS 5.5 (medium): In ssh-agent in OpenSSH before 9.6, certain destination constraints can be incompletely applied. When destination constraints are specified…
CVE-2018-20685 — CVSS 5.3 (medium): In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty…
CVE-2016-1907 — CVSS 5.3 (medium): The ssh_packet_read_poll2 function in packet.c in OpenSSH before 7.1p2 allows remote attackers to cause a denial of service (out-of-bounds…
CVE-2016-20012 — CVSS 5.3 (medium): OpenSSH through 8.7 allows remote attackers, who have a suspicion that a certain combination of username and public key is known to an SSH…
CVE-2017-15906 — CVSS 5.3 (medium): The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows…
CVE-2018-15473 — CVSS 5.3 (medium): OpenSSH through 7.7 is prone to a user enumeration vulnerability due to not delaying bailout for an invalid authenticating user until after…
CVE-2018-15919 — CVSS 5.3 (medium): Remotely observable behaviour in auth-gss2.c in OpenSSH through 7.8 could be used by remote attackers to detect existence of users on a…
CVE-2000-0217 — CVSS 5.1 (medium): The default configuration of SSH allows X forwarding, which could allow a remote attacker to control a client's X sessions via a malicious…
CVE-2003-0190 — CVSS 5.0 (medium): OpenSSH-portable (OpenSSH) 3.6.1p1 and earlier with PAM support enabled immediately sends an error message when a user does not exist…
CVE-2005-2798 — CVSS 5.0 (medium): sshd in OpenSSH before 4.2, when GSSAPIDelegateCredentials is enabled, allows GSSAPI credentials to be delegated to clients who log in…
CVE-2005-2797 — CVSS 5.0 (medium): OpenSSH 4.0, and other versions before 4.2, does not properly handle dynamic port forwarding ("-D" option) when a listen address is not…
CVE-2004-2069 — CVSS 5.0 (medium): sshd.c in OpenSSH 3.6.1p2 and 3.7.1p2 and possibly other versions, when using privilege separation, does not properly signal the…
CVE-2008-4109 — CVSS 5.0 (medium): A certain Debian patch for OpenSSH before 4.3p2-9etch3 on etch; before 4.6p1-1 on sid and lenny; and on other distributions such as SUSE…
CVE-2026-55655 — CVSS 5.0 (medium): A flaw was found in OpenSSH. A local unprivileged attacker on a Linux client host can hijack client-side X11 forwarding connections. This…
CVE-2000-0992 — CVSS 5.0 (medium): Directory traversal vulnerability in scp in sshd 1.2.xx allows a remote malicious scp server to overwrite arbitrary files via a .. (dot…
CVE-2007-4654 — CVSS 5.0 (medium): Unspecified vulnerability in SSHield 1.6.1 with OpenSSH 3.0.2p1 on Cisco WebNS 8.20.0.1 on Cisco Content Services Switch (CSS) series 11000…
CVE-2006-4925 — CVSS 5.0 (medium): packet.c in ssh in OpenSSH allows remote attackers to cause a denial of service (crash) by sending an invalid protocol sequence with…
CVE-2006-5052 — CVSS 5.0 (medium): Unspecified vulnerability in portable OpenSSH before 4.4, when running on some platforms, allows remote attackers to determine the validity…
CVE-2006-0883 — CVSS 5.0 (medium): OpenSSH on FreeBSD 5.3 and 5.4, when used with OpenPAM, does not properly handle when a forked child process terminates during PAM…
CVE-2007-2243 — CVSS 5.0 (medium): OpenSSH 4.6 and earlier, when ChallengeResponseAuthentication is enabled, allows remote attackers to determine the existence of user…
CVE-2001-1382 — CVSS 5.0 (medium): The "echo simulation" traffic analysis countermeasure in OpenSSH before 2.9.9p2 sends an additional echo packet after the password and…
CVE-2006-0225 — CVSS 4.6 (medium): scp in OpenSSH 4.2p1 allows attackers to execute arbitrary commands via filenames that contain shell metacharacters or spaces, which are…
CVE-2000-0143 — CVSS 4.6 (medium): The SSH protocol server sshd allows local users without shell access to redirect a TCP connection through a service that uses the standard…
CVE-2004-0175 — CVSS 4.3 (medium): Directory traversal vulnerability in scp for OpenSSH before 3.4p1 allows remote malicious servers to overwrite arbitrary files. NOTE: this…
CVE-2015-5352 — CVSS 4.3 (medium): The x11_open_helper function in channels.c in ssh in OpenSSH before 6.9, when ForwardX11Trusted mode is not used, lacks a check of the…
CVE-2026-55653 — CVSS 4.3 (medium): A flaw was found in OpenSSH. A malicious SSH server can exploit a double free vulnerability in the Diffie-Hellman Group Exchange (DH-GEX)…
CVE-2025-32728 — CVSS 4.3 (medium): In sshd in OpenSSH before 10.0, the DisableForwarding directive does not adhere to the documentation stating that it disables X11 and agent…
CVE-2007-3102 — CVSS 4.3 (medium): Unspecified vulnerability in the linux_audit_record_event function in OpenSSH 4.3p2, as used on Fedora Core 6 and possibly other systems…
CVE-2007-2768 — CVSS 4.3 (medium): OpenSSH, when using OPIE (One-Time Passwords in Everything) for PAM, allows remote attackers to determine the existence of certain user…
CVE-2026-35414 — CVSS 4.2 (medium): OpenSSH before 10.3 mishandles the authorized_keys principals option in uncommon scenarios involving a principals list in conjunction with…
CVE-2014-2532 — CVSS 4.2 (medium): sshd in OpenSSH before 6.6 does not properly support wildcards on AcceptEnv lines in sshd_config, which allows remote attackers to bypass…
CVE-2001-0361 — CVSS 4.0 (medium): Implementations of SSH version 1.5, including (1) OpenSSH up to version 2.3.0, (2) AppGate, and (3) ssh-1 up to version 1.2.31, in certain…
CVE-2014-9278 — CVSS 4.0 (medium): The OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7 and when running in a Kerberos environment, allows remote…
CVE-2010-4755 — CVSS 4.0 (medium): The (1) remote_glob function in sftp-glob.c and the (2) process_put function in sftp.c in OpenSSH 5.8 and earlier, as used in FreeBSD 7.3…
CVE-2021-36368 — CVSS 3.7 (low): An issue was discovered in OpenSSH before 8.9. If a client is using public-key authentication with agent forwarding but without…
CVE-2026-55654 — CVSS 3.7 (low): A flaw was found in OpenSSH. This vulnerability, a heap out-of-bounds read, occurs during the cleanup of GSSAPI (Generic Security Service…
CVE-2008-5161 — CVSS 3.7 (low): Error handling in the SSH protocol in (1) SSH Tectia Client and Server and Connector 4.0 through 4.4.11, 5.0 through 5.2.4, and 5.3 through…
CVE-2026-35386 — CVSS 3.6 (low): In OpenSSH before 10.3, command execution can occur via shell metacharacters in a username within a command line. This requires a scenario…
CVE-2011-5000 — CVSS 3.5 (low): The ssh_gssapi_parse_ename function in gss-serv.c in OpenSSH 5.8 and earlier, when gssapi-with-mic authentication is enabled, allows remote…
CVE-2026-35387 — CVSS 3.1 (low): OpenSSH before 10.3 can use unintended ECDSA algorithms. Listing of any ECDSA algorithm in PubkeyAcceptedAlgorithms or…
CVE-2006-5229 — CVSS 2.6 (low): OpenSSH portable 4.1 on SUSE Linux, and possibly other platforms and versions, and possibly under limited configurations, allows remote…
CVE-2026-35388 — CVSS 2.5 (low): OpenSSH before 10.3 omits connection multiplexing confirmation for proxy-mode multiplexing sessions.
CVE-2001-1029 — CVSS 2.1 (low): libutil in OpenSSH on FreeBSD 4.4 and earlier does not drop privileges before verifying the capabilities for reading the copyright and…
CVE-1999-1010 — CVSS 2.1 (low): An SSH 1.2.27 server allows a client to use the "none" cipher, even if it is not allowed by the server policy.
CVE-2005-2666 — CVSS 1.2 (low): SSH, as implemented in OpenSSH before 4.0 and possibly other implementations, stores hostnames, IP addresses, and keys in plaintext in the…
CVE-2008-3259 — CVSS 1.2 (low): OpenSSH before 5.1 sets the SO_REUSEADDR socket option when the X11UseLocalhost configuration setting is disabled, which allows local users…