A new OpenSSH unauthenticated remote code execution (RCE) vulnerability dubbed "regreSSHion" gives root privileges on glibc-based Linux systems.

Over 14M servers may be vulnerable to OpenSSH's regreSSHion RCE flaw. Here's what you need to do OpenSSH, the bedrock of secure Linux network access, has a nasty security flaw.

This Week In Security: Signal DRM, Modern Phone Phreaking, And The Impossible SSH RCE This Week In Security: Lingering Spectre, Deep Fakes, And CoreAudio ...

Over 14 million OpenSSH instances exposed to the internet are now at risk following the discovery of a critical vulnerability in OpenSSH’s server, according to a new analysis by Qualys. The remote ...

A critical vulnerability in the Erlang/OTP SSH, tracked as CVE-2025-32433, has been disclosed that allows for unauthenticated remote code execution on vulnerable devices.

And hence, enter NetImposter, a new tool specifically designed to automate this process, sending spoofed ARP packets, and establishing an “impossible” TCP connection. Impossible RCE in SSH ...

Researchers from Qualys found two vulnerabilities that can be combined to bypass the server key verification in OpenSSH clients when the VerifyHostKeyDNS is used, allowing man-in-the-middle ...

Exploit code now available for MitM and DoS attacks Researchers can disclose two brand-new vulnerabilities in OpenSSH now that patches have been released.… Qualys discovered the bugs in January ...

SSH protects the world’s most sensitive networks. It just got a lot weaker Novel Terrapin attack uses prefix truncation to downgrade the security of SSH channels.

Researchers at the Qualys Threat Research Unit (TRU) have unearthed discovered a critical security flaw in OpenSSH's server (sshd) in glibc-based Linux systems.