Detections
Analytics

OpenSSH < 9.6 Multiple Vulnerabilities

medium Nessus Plugin ID 187201

Language:

Version 1.7

Feb 28, 2025, 9:08 PM

  • Logic Changes (avoid false positive)

Plugin Feed: 202502282108

Version 1.6

Jul 5, 2024, 4:58 PM

  • IAVM reference

Plugin Feed: 202407051658

Version 1.5

Mar 27, 2024, 2:17 PM

  • Logic Changes (changed to VCF format)
  • Plugin requirements (introduced new, modern upstream dependency)

Plugin Feed: 202403271417

Version 1.4

Jan 17, 2024, 12:13 AM

  • Detection (fix vuln versions , all versions less than 9.6 are vulnerable)

Plugin Feed: 202401170013

Version 1.3

Jan 4, 2024, 3:23 PM

  • CVSSv2 severity (based on CVE-2023-51385, severity decreased from "High" to "Medium")
  • CVSSv3 severity (based on None, severity decreased from "High" to "Medium")
  • CVSS metrics ("CVSSv2 score" set to 6.4. "CVSSv3 score" set to 6.5. "CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N". "CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N")

Plugin Feed: 202401041523

Version 1.2

Dec 25, 2023, 2:08 PM

  • CVSS metrics ("CVSSv3 score" set to 9.8. "CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H")
  • CVSSv3 score source (changed from "CVE-2023-48795" to none)

Plugin Feed: 202312251408

Version 1.2

Jan 4, 2024, 1:31 PM

  • CVSS metrics ("CVSSv2 score" set to 6.4)
  • CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:L/I:L/A:N")
  • CVSS metrics ("CVSSv3 score" set to 6.5)
  • CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:P/I:P/A:N")
  • CVSSv3 severity (based on None, severity decreased from "High" to "Medium")
  • CVSSv2 severity (based on CVE-2023-51385, severity decreased from "High" to "Medium")

Plugin Feed: 202401041331

Version 1.1

Dec 22, 2023, 3:04 PM

  • CVSSv3 score source (set to "CVE-2023-48795")
  • CVSS metrics ("CVSSv2 score" set to 10.0. "CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C". "CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H". "CVSSv3 score" set to 9.1)
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C". "CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")
  • CVSSv2 score source (changed from "CVE-2023-48795" to "CVE-2023-51385")
  • CVSSv2 severity (based on CVE-2023-51385, severity increased from "Medium" to "High")
  • Exploit attributes ("Exploit available" set to "True". "Exploitability ease" changed from "No known exploits are available" to "Exploits are available")
  • CVSSv3 severity (based on CVE-2023-48795, severity increased from "Medium" to "High")

Plugin Feed: 202312221504

Version 1.0

Dec 22, 2023, 10:57 AM

  • New

Plugin Feed: 202312221057

Version 1.0

Dec 22, 2023, 1:07 PM

  • Exploit attributes ("Exploitability ease" changed from "No known exploits are available" to "Exploits are available")
  • CVSS metrics ("CVSSv2 score" set to 10.0)
  • CVSS metrics ("CVSSv2 vector" set to "CVSS2#AV:N/AC:L/Au:N/C:C/I:C/A:C")
  • CVSS metrics ("CVSSv3 score" set to 9.1)
  • CVSS metrics ("CVSSv3 vector" set to "CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:H")
  • CVSS temporal metrics ("CVSSv2 temporal vector" set to "CVSS2#E:POC/RL:OF/RC:C")
  • CVSS temporal metrics ("CVSSv3 temporal vector" set to "CVSS:3.0/E:P/RL:O/RC:C")
  • CVSSv2 score source (changed from "CVE-2023-48795" to "CVE-2023-51385")
  • CVSSv2 severity (based on CVE-2023-51385, severity increased from "Medium" to "High")
  • CVSSv3 score source (set to "CVE-2023-48795")
  • CVSSv3 severity (based on CVE-2023-48795, severity increased from "Medium" to "High")
  • Exploit attributes ("Exploit available" set to "True")

Plugin Feed: 202312221307

* Changelogs are generally available for changes made after Nov 1, 2022