CVE-2024-6387 - Detection & Fixing - CodeAnt AI, Inc.
Вставка
- Опубліковано 22 сер 2024
- A major security vulnerability has been found in OpenSSH, potentially leading to remote code execution as the root user on glibc-based Linux systems. It is being referred to as regreSSHion (CVE-2024-6387). This flaw affects versions 8.5p1 to 9.7p1 due to a signal handler race condition in sshd, and it has been identified in 14 million instances.
According to Qualys data, there are 14 million potentially vulnerable OpenSSH servers. Out of these, 700,000 are exposed to the internet, posing a significant risk.
Credits to Alexander Hagenah, Cybersecurity Leader, for rapidly developing the detection script for the CVE-2024-6387 vulnerability.
@cybersecurityclub @Code_Security
![[UA] Team Vitality проти NAVI | IEM Cologne 2024](http://i.ytimg.com/vi/wttO1zVRTC0/mqdefault.jpg)
I would never run any script that you can download on the internet on my computer
By that point, you may reconsider using open-source software, considering that 60% of the world's core software is open source.
There are a lot of scammers on the internet, so will you stop using it?