Close Menu
Indo Guard OnlineIndo Guard Online
  • Home
  • Cyber Security
  • Risk Management
  • Travel
  • Security News
  • Tech
  • More
    • Data Privacy
    • Data Protection
    • Global Security
What's Hot

Langsmith Bug can expose the Openai keys and users’ data through malicious agents

June 17, 2025

How to protect backups

June 17, 2025

Silver Fox Apt has on target Taiwan with sophisticated GH0Stcringe and Holdinghands Rats Malicious Programs

June 17, 2025
Facebook X (Twitter) Instagram
Facebook X (Twitter) Instagram YouTube
Indo Guard OnlineIndo Guard Online
Subscribe
  • Home
  • Cyber Security
  • Risk Management
  • Travel
  • Security News
  • Tech
  • More
    • Data Privacy
    • Data Protection
    • Global Security
Indo Guard OnlineIndo Guard Online
Home » New Disadvantages OpenSSH Turn Aman-The-S-SIDL AND DOS ATTACKS-HAND NOW
Global Security

New Disadvantages OpenSSH Turn Aman-The-S-SIDL AND DOS ATTACKS-HAND NOW

AdminBy AdminFebruary 18, 2025No Comments2 Mins Read
OpenSSH
Share
Facebook Twitter LinkedIn Pinterest Email Copy Link


February 18, 2025Red LakshmananVulnerability / safety network

Openssh

Two safety vulnerabilities were found in the Safe OpenSSH Secure network, which can be successfully used by an active machine (MITM) and a refusal attack (DOS), respectively, under certain conditions.

Vulnerability minute According to the study threaten Qualys (TRU), there is listed below –

  • Cve-2025-26465 – The Openssh Client Contains A Logic Error Between Versions 6.8p1 to 9.9p1 (inclusive) A LEGITIMATE Server When A Client Attempts To Connect To This (introduced in December 2014)
  • Cve-2025-26466 – Customer and server Openssh vulnerable to the DOS attack before the sensor between versions 9.5p1 to 9.9p1 (inclusive), which causes memory and processor consumption (introduced in August 2023)

“If an attacker can attack a person in the middle part via CVE-2025-26465, the client can take the attacker’s key instead of the key to the legitimate server,” said Said Abasi, the Qualys Tru.

Cybersecurity

“This violates the integrity of the SSH connection, which allows you to potentially intercede or replace the session before the user even understands it.”

In other words, successful operation can allow malicious subjects to compromise and steal SSH sessions as well as get unauthorized access to sensitive data. It is worth noting that the RevifyhostKeydns option is disabled by default.

On the other hand, the CVE-2025-2646 CVE-2025-2646 can lead to a presence problem by preventing administrators from managing servers and blocking legal users, effectively crippling ordinary operations.

Both vulnerabilities were address In OpenSSH 9.9P2, released today by OpenSSH.

Disclosure occurs within seven months after Qualys shed light on another lack of Openssh, dubbed regress (CVE-2024-6387), which could lead to unauthorized execution of remote code with root privileges in Linux Systems based on Glibc.

Found this article interesting? Keep track of us further Youter  and LinkedIn To read more exclusive content we publish.





Source link

Share. Facebook Twitter Pinterest LinkedIn Tumblr Email Copy Link
Admin
  • Website

Related Posts

Langsmith Bug can expose the Openai keys and users’ data through malicious agents

June 17, 2025

How to protect backups

June 17, 2025

Silver Fox Apt has on target Taiwan with sophisticated GH0Stcringe and Holdinghands Rats Malicious Programs

June 17, 2025

Google warns about scattered spider attacks focused on IT -commander by US insurance firms

June 17, 2025

Password “B” in Sitecore XP Sparks Sparks Erriss RCE when deploying businesses

June 17, 2025

Are you forgotten accounts of advertising services that leave you risk?

June 17, 2025
Add A Comment
Leave A Reply Cancel Reply

Loading poll ...
Coming Soon
Do You Like Our Website
: {{ tsp_total }}

Subscribe to Updates

Get the latest security news from Indoguardonline.com

Latest Posts

Langsmith Bug can expose the Openai keys and users’ data through malicious agents

June 17, 2025

How to protect backups

June 17, 2025

Silver Fox Apt has on target Taiwan with sophisticated GH0Stcringe and Holdinghands Rats Malicious Programs

June 17, 2025

Google warns about scattered spider attacks focused on IT -commander by US insurance firms

June 17, 2025

Password “B” in Sitecore XP Sparks Sparks Erriss RCE when deploying businesses

June 17, 2025

Are you forgotten accounts of advertising services that leave you risk?

June 17, 2025

New Flodrix Botnet Option Operates Langflow Ai Server RCE BUG to launch DDOS ATTACKS

June 17, 2025

Lack of the TP-Link Cve-2023-33538 router under active operation, CISA releases an immediate warning

June 17, 2025
About Us
About Us

Provide a constantly updating feed of the latest security news and developments specific to Indonesia.

Facebook X (Twitter) Pinterest YouTube WhatsApp
Our Picks

Langsmith Bug can expose the Openai keys and users’ data through malicious agents

June 17, 2025

How to protect backups

June 17, 2025

Silver Fox Apt has on target Taiwan with sophisticated GH0Stcringe and Holdinghands Rats Malicious Programs

June 17, 2025
Most Popular

In Indonesia, crippling immigration ransomware breach sparks privacy crisis

July 6, 2024

Why Indonesia’s Data Breach Crisis Calls for Better Security

July 6, 2024

Indonesia’s plan to integrate 27,000 govt apps in one platform welcomed but data security concerns linger

July 6, 2024
© 2025 indoguardonline.com
  • Home
  • About us
  • Contact us
  • Privacy Policy

Type above and press Enter to search. Press Esc to cancel.