OpenSSH: race condition in sshd allows remote code execution

tmpod@lemmy.pt to Technology@lemmy.ml – 103 points – OpenSSH: race condition in sshd allows remote code execution
stackdiary.com

A severe vulnerability in OpenSSH, dubbed "regreSSHion" (CVE-2024-6387), has been discovered by the Qualys Threat Research Unit, potentially exposing

9

You are viewing a single comment
View all commentsShow the parent comment

But, eventually exploitable is still a pretty major concern for anybody who has systems running longer than a few days at a time.

True, an RCE is always a serious thing. Just saying it's not exactly catastrophic like others have been more so.

I can’t imagine any system of influence running an exposed ssh without some further protection from connection abuse like fail2ban.