OpenSSH
Security Scorecard
Score
46F
Total CVEs
40
Patch Rate
10%
4 patched
Avg Response
-
days to patch
Critical Gaps
0
exploitable, no detection
Severity Breakdown
Critical0
High2
Medium7
Low2
Patch Status
Patched4 (10%)
Partial/Workaround0 (0%)
Unpatched36 (90%)
CVEs (40)
| CVE ID | Title | Severity | Score | Days | Patch |
|---|---|---|---|---|---|
| CVE-2019-3863 | libssh2 Vulnerability | HIGH | 7.5 | - | Patched |
| CVE-2019-3859 | libssh2 Denial of Service | MEDIUM | 5.0 | - | Patched |
| CVE-2018-15919 | OpenSSH Oracle Detection Vulnerability | MEDIUM | 5.3 | - | Patched |
| CVE-2018-15473 | OpenSSH User Enumeration Vulnerability | MEDIUM | 5.3 | - | Patched |
| CVE-2017-4116 | Uninitialized Pointer Dereference in OpenSSH | N/A | - | 2837d | Unpatched |
| CVE-2017-4138 | CVE-2017-4138 - Unauthenticated Remote Command Execution in OpenSSH | N/A | - | 2837d | Unpatched |
| CVE-2017-4194 | Unauthenticated Remote Code Execution in OpenSSH | N/A | - | 2837d | Unpatched |
| CVE-2017-4419 | CVE-2017-4419 - Unauthenticated Remote Code Execution in OpenSSH | N/A | - | 2837d | Unpatched |
| CVE-2017-15486 | Unspecified | N/A | - | 2889d | Unpatched |
| CVE-2017-1818 | CVE-2017-1818 - Unauthenticated Remote Code Execution in OpenSSH | N/A | - | 2906d | Unpatched |