Approved changes feed: RSS · Atom

cpe:2.3:a:openbsd:openssh:-:*:*:*:*:*:*:*

part: a version: - update: *

VendorOpenbsd (932cdfc2-94b9-5fb6-8ef3-d0b271f414b5)
ProductOpenssh (00fc4953-faf7-5f04-8d3d-4edd44206199)
Edition*
Language*
Software edition*
Target software*
Target hardware*
Other*
NotesImported from NVD CPE 2.0 feed

PURL mappings

PURLSourceLast updated
pkg:github/openssh/openssh-portable purl2cpe 2026-06-01 10:17:38.303008
pkg:mindrot/openss purl2cpe 2026-06-01 10:17:38.303009
pkg:openbsd/openssh purl2cpe 2026-06-01 10:17:38.303011
pkg:rpm/fedora/openssh purl2cpe 2026-06-01 10:17:38.303012
pkg:rpm/opensuse/openssh purl2cpe 2026-06-01 10:17:38.303013

Vulnerability references

IdentifiercpeApplicabilitySubmitteddb.gcve.eu detailsRationale
CVE:CVE-2014-9278 vulnerable 2026-06-08 05:06:11.309949 Details available
The OpenSSH server, as used in Fedora and Red Hat Enterprise Linux 7 and when running in a Kerberos environment, allows remote authenticated users to log in as another user when they are listed in the .k5users file of that user, which might bypass intended authentication requirements that would force a local login.
Published: 2014-12-06T15:00:00.000Z
Updated: 2024-08-06T13:40:25.092Z
Reference links
Imported from gcve-enriched-dumps CVE data

Contribute

You can submit an edit proposal for this CPE entry or suggest a related product/vendor addition using the action button above.