CVE-2024-6387

Vulnerability updated 7 months ago (2024-11-29T13:49:21.985Z)
Download STIX
Preview STIX
CVE-2024-6387, also known as "regreSSHion," is a significant vulnerability discovered in OpenSSH servers (sshd) operating in glibc-based Linux environments. This flaw represents a software design or implementation error that poses substantial security risks. The vulnerability allows for unauthenticated Remote Code Execution (RCE), enabling an attacker to execute arbitrary code with the highest privileges. As such, it could potentially lead to full system compromise, posing serious threats to the integrity, confidentiality, and availability of affected systems. The discovery of CVE-2024-6387 has sparked widespread concern and investigation within the cybersecurity community. In addition to the identified vulnerable systems, a further 51 products are under active investigation by various firms to ascertain whether they too are susceptible to the regreSSHion vulnerability. The breadth of this investigation underscores the potential severity and widespread impact of this vulnerability, prompting urgent action from stakeholders across the industry. For more detailed information about CVE-2024-6387, please refer to the research article published on the Check Point Research blog: https://blog.checkpoint.com/research/cve-2024-6387-regresshion-remote-code-execution-vulnerability-seen-in-openssh/. It is crucial for all entities using potentially affected systems to stay informed about the latest developments regarding this vulnerability and implement recommended mitigation strategies as soon as possible to protect their systems and data.
Description last updated: 2024-08-01T13:20:47.813Z
What's your take? (Question 1 of 3)
Help tune the shared Cybergeist dataset, assist your peers, and earn karma. Expand the panel to get started.
Possible Aliases / Cluster overlaps
It's hard to track cluster overlaps and naming conventions between vendors, so here are some possible overlapping names / profiles you also may want to look at. Create a free account to see the source evidence for each alias, and help fix any errors.
Alias DescriptionVotes
Regresshion is a possible alias for CVE-2024-6387. The vulnerability named "RegreSSHion", tracked as CVE-2024-6387, is a severe and critical flaw identified in OpenSSH servers (sshd) on glibc-based Linux systems. It specifically originates from a signal handler race condition during SSH authentication, leading to unsafe handling of the SIGALRM signa
7
Miscellaneous Associations
Other elements of context that could aid in the identification of relevance
Vulnerability
Openssh
Linux
Analyst Notes & Discussion
Be the first to leave your mark here! Log in to share your views and vote.
Source Document References
Information about the CVE-2024-6387 Vulnerability was read from the documents corpus below. This display is limited to 20 results, create a free account to see more
PreviewSource LinkCreatedAtTitle
CISA
19 days ago
CISA
3 months ago
Securityaffairs
4 months ago
Flashpoint
7 months ago
Securelist
7 months ago
Securelist
7 months ago
Securityaffairs
a year ago
Trend Micro
a year ago
Securityaffairs
a year ago
Checkpoint
a year ago
InfoSecurity-magazine
a year ago
Unit42
a year ago
DARKReading
a year ago
BankInfoSecurity
a year ago
SANS ISC
a year ago
Securityaffairs
a year ago
InfoSecurity-magazine
a year ago