Summary
A remote code execution vulnerability has been reported in OpenSSH (CVE-2024-6387). The supported versions of HYCU R-Cloud Hybrid Cloud Edition do not use the affected OpenSSH versions and are not impacted by the vulnerability.
Date of publication
July 5th, 2024
Description
There is a race condition which can lead to sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger the condition by failing to authenticate within a set time period.
Reference
RedHat security advisory: https://access.redhat.com/security/cve/cve-2024-6387
Comments
Please sign in to leave a comment.