OpenSSH Vulnerabilities Expose Clients and Servers to MitM & DoS Attacks

Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis. With OpenSSH integral to enterprise infrastructure, these vulnerabilities pose significant risks to data integrity, system availability, and regulatory compliance. Affecting OpenSSH versions 9.5p1 through 9.9p1, this vulnerability permits attackers to exhaust server resources via asymmetric CPU/memory consumption. The MitM vulnerability undermines SSH’s foundational promise of secure communication, enabling stealthy breaches that evade traditional monitoring. The Qualys Threat Research Unit (TRU) has uncovered two high-severity vulnerabilities in OpenSSH, the widely used suite for secure network communication. This vulnerability impacts OpenSSH clients running versions 6.8p1 through 9.9p1 and arises when the VerifyHostKeyDNS option is enabled. Tracked as CVE-2025-26465 and CVE-2025-26466, these flaws enable machine-in-the-middle (MitM) attacks against clients and pre-authentication denial-of-service (DoS) exploits targeting both clients and servers. Gurubaran is a co-founder of Cyber Security News and GBHackers On Security. This compromises confidentiality and allows adversaries to steal credentials, manipulate data, or pivot to internal systems. By flooding unauthenticated sessions with SSH2_MSG_PING packets, adversaries can cripple systems, locking administrators out of critical infrastructure. The issue with CVE-2025-26466 is that attackers can exploit it without needing to steal credentials, making it easier for them to gain access. Qualys emphasizes that the flaw’s 11-year presence (introduced in December 2014) underscores the need for rigorous configuration audits. Intel by Intruder now uses AI to contextualize NVD descriptions, helping security teams assess risk faster. Attackers exploiting this flaw can impersonate legitimate servers by bypassing host key verification, even when DNS SSHFP records are absent.

This Cyber News was published on cybersecuritynews.com. Publication date: Tue, 18 Feb 2025 15:30:30 +0000

Cyber News related to OpenSSH Vulnerabilities Expose Clients and Servers to MitM & DoS Attacks

New OpenSSH flaws expose SSH servers to MiTM and DoS attacks - "The attack against the OpenSSH client (CVE-2025-26465) succeeds regardless of whether the VerifyHostKeyDNS option is set to "yes" or "ask" (its default is "no"), requires no user interaction, and does not depend on the existence of an SSHFP resource ...
2 days ago Bleepingcomputer.com

CVE-2021-36845 - Multiple Authenticated Stored Cross-Site Scripting (XSS) vulnerabilities in YITH Maintenance Mode (WordPress plugin) versions < 1.3.8, there are 46 vulnerable parameters that were missed by the vendor while patching the 1.3.7 version to 1.3.8. ...
3 years ago

Critical OpenSSH vulnerability could affect millions of servers - Qualys disclosed a critical OpenSSH vulnerability and warned that more than 14 million potentially vulnerable server instances are exposed to the internet. In a blog post on Monday, Bharat Jogi, senior director of Qualys' Threat Research Unit, ...
7 months ago Techtarget.com

Openssh Flaw Exposes Millions of Linux to Arbitrary Code Attacks - A critical vulnerability has been discovered in OpenSSH, a widely used implementation of the SSH protocol, which could potentially expose millions of Linux systems to arbitrary code execution attacks. The flaw, identified in the sshd(8) component of ...
7 months ago Cybersecuritynews.com

OpenSSH Vulnerabilities Expose Clients and Servers to MitM & DoS Attacks - Cyber Security News is a Dedicated News Platform For Cyber News, Cyber Attack News, Hacking News & Vulnerability Analysis. With OpenSSH integral to enterprise infrastructure, these vulnerabilities pose significant risks to data integrity, system ...
2 days ago Cybersecuritynews.com

Threat Brief: CVE-2024-6387 OpenSSH RegreSSHion Vulnerability - On July 1, 2024, a critical signal handler race condition vulnerability was disclosed in OpenSSH servers on glibc-based Linux systems. Using Palo Alto Networks Xpanse data, we observed 23 million instances of OpenSSH servers including all versions. ...
7 months ago Unit42.paloaltonetworks.com

9 Best DDoS Protection Service Providers for 2024 - eSecurity Planet content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More. One of the most powerful defenses an organization can employ against distributed ...
1 year ago Esecurityplanet.com

New regreSSHion OpenSSH RCE bug gives root on Linux servers - OpenSSH is a suite of networking utilities based on the Secure Shell protocol. It is extensively used for secure remote login, remote server management and administration, and file transfers via SCP and SFTP. The flaw, discovered by researchers at ...
7 months ago Bleepingcomputer.com

Debian and Ubuntu Fixed OpenSSH Vulnerabilities - Debian and Ubuntu have released security updates for their respective OS versions, addressing five flaws discovered in the openssh package. In this article, we will delve into the intricacies of these vulnerabilities, shedding light on their nature ...
1 year ago Securityboulevard.com

Critical OpenSSH Flaw Enables Full System Compromise - Over 14 million OpenSSH instances exposed to the internet are now at risk following the discovery of a critical vulnerability in OpenSSH's server, according to a new analysis by Qualys. The remote unauthenticated code execution vulnerability could ...
7 months ago Infosecurity-magazine.com

Marketing Strategies for PaaS Services: Get Ahead of the Curve - With the ever-growing demand for cloud-based performance and services, Platform-as-a-Service (PaaS) is becoming increasingly critical for modern software development. PaaS is a cloud-based platform, providing businesses with an integrated suite of ...
2 years ago Hackread.com

Millions of OpenSSH Servers Potentially Vulnerable to Remote regreSSHion Attack - Millions of OpenSSH servers could be affected by a newly disclosed vulnerability that can be exploited for unauthenticated remote code execution. The flaw, tracked as CVE-2024-6387 and named regreSSHion, was discovered by the threat research unit at ...
7 months ago Securityweek.com

Warfare and Geopolitics are Fuelling Denial-of-Service Attacks - The analysis is based on 310 verified Denial-of-Service incidents during the reporting period of January 2022 to August 2023. A large-scale study is also included of publicly reported incidents. The study focuses on the motivations of attackers, ...
1 year ago Enisa.europa.eu

CVE-2007-0228 - The DataCollector service in EIQ Networks Network Security Analyzer allows remote attackers to cause a denial of service (service crash) via a (1) &CONNECTSERVER& (2) &ADDENTRY& (3) &FIN& (4) &START& (5) ...
7 years ago

Wordfence Intelligence Weekly WordPress Vulnerability Report (September 23, 2024 to September 29, 2024) - Software Name Software Slug 012 Ps Multi Languages 012-ps-multi-languages ABC APP CREATOR abcapp-creator Absolute Reviews absolute-reviews Accordion accordions Ads by WPQuads – Adsense Ads, Banner Ads, Popup Ads quick-adsense-reloaded Advanced File ...
4 months ago Wordfence.com

CVE-2023-52587 - In the Linux kernel, the following vulnerability has been resolved: ...
11 months ago

CVE-2019-13363 - admin.php?pagenotification_by_mail in Piwigo 2.9.5 has XSS via the nbm_send_html_mail, nbm_send_mail_as, nbm_send_detailed_content, ...
1 year ago

CVE-2020-28092 - PESCMS Team 2.3.2 has multiple reflected XSS via the id parameter:?gTeam&mTask&amy&status3&id,?gTeam&mTask&amy&status0&id,?gTeam&mTask&amy&status1&id,?gTeam&mTask&amy&status10&id ...
4 years ago

CVE-2023-48795 - The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client ...
2 months ago

A Fix is Available for a Security Flaw that Could Allow Unauthorized Access Before Authentication - The maintainers of OpenSSH have released a new version, 9.2, to fix a number of security issues, including a memory safety vulnerability in the OpenSSH server. This vulnerability, tracked as CVE-2023-25136, is a pre-authentication double free ...
2 years ago Thehackernews.com

New HeadCrab Malware Hijacks 1,200 Redis Servers - Since September 2021, over a thousand vulnerable Redis servers online have been infected by a stealthy malware dubbed "HeadCrab", designed to build a botnet that mines Monero cryptocurrency. At least 1,200 servers have been infected by the HeadCrab ...
2 years ago Heimdalsecurity.com

Nearly 11 million SSH servers vulnerable to new Terrapin attacks - Almost 11 million internet-exposed SSH servers are vulnerable to the Terrapin attack that threatens the integrity of some SSH connections. The Terrapin attack targets the SSH protocol, affecting both clients and servers, and was developed by academic ...
1 year ago Bleepingcomputer.com

The year of Mega Ransomware attacks with unprecedented impact on global organizations - A Staggering 1 in every 10 organizations worldwide hit by attempted Ransomware attacks in 2023, surging 33% from previous year, when 1 in every 13 organisations received ransomware attacks Throughout 2023, organizations around the world have each ...
1 year ago Blog.checkpoint.com

Hackers Compromised Over 1,200 Redis Database Servers - A new type of malware, designed to target vulnerable Redis servers on the internet, has been spreading rapidly since September 2021. This is a quick-spreading malware, designed to operate stealthily, that has already infiltrated over thousand ...
2 years ago Cybersecuritynews.com

Definition from TechTarget - Cyber attacks aim to disable, disrupt, destroy or control computer systems or to alter, block, delete, manipulate or steal the data held within these systems. They're identified as nation-state attackers, and they've been accused of attacking the IT ...
1 year ago Techtarget.com

Latest Cyber News

Chinese Hackers Exploiting Check Point Firewall Vulnerability To Deploy Ransomware - 1 hour ago
Chinese hackers use custom malware to spy on US telecom networks - 2 hours ago
DOGE access to Social Security, IRS data could create privacy and security risks, experts say | The Record from Recorded Future News - 3 hours ago
SOC Webinar: Better SOC with Interactive Malware Sandbox - Register for Free - 3 hours ago
Integrating LLMs into security operations using Wazuh - 3 hours ago
Rhadamanthys Infostealer Exploiting Microsoft Management Console to Execute Malicious Script - 3 hours ago
IBM OpenPages Vulnerability Let Attackers Steal Authentication Credentials - 3 hours ago
Microsoft fixes Power Pages zero-day bug exploited in attacks - 4 hours ago
Sophisticated Phishing Attacks Targeting Decision-Makers Including CEOs and CTOs - 4 hours ago
Microsoft testing fix for Windows 11 bug breaking SSH connections - 5 hours ago
New Zhong Malware Exploit AnyDesk Tool To Attack Fintech & Cryptocurrency - 6 hours ago
Fedora Linux Kernel Vulnerability Let Attackers Gain Access to Sensitive Data - 8 hours ago
Multiple NVIDIA CUDA Toolkit Vulnerabilities Let Attackers Trigger DoS - 8 hours ago
Microsoft Power Pages 0-Day Vulnerability Exploited in the Wild - 8 hours ago
APT-C-28 Group Launched New Cyber Attack With Fileless RokRat Malware - 8 hours ago
Microsoft Admin Guide to Block & Remove Apps on Endpoints - 9 hours ago
AWS Key Hunter - A Free Automated Tool to Detect Exposed AWS keys - 9 hours ago
Symantec Diagnostic Tool Vulnerability Let Attackers Escalate Privileges - 9 hours ago
NSA Added New Features to Supercharge Ghidra 11.3 - 10 hours ago
New NailaoLocker ransomware used against EU healthcare orgs - 10 hours ago

Cyber Trends (last 7 days)

Okta - 1 year ago
23andMe - 1 year ago
Kimsuky - 1 year ago
LogoFAIL - 1 year ago
Gh0st rat - 1 year ago

Trending Cyber News (last 7 days)

Chinese Hackers Exploiting Check Point Firewall Vulnerability To Deploy Ransomware - 1 hour ago
Chinese hackers use custom malware to spy on US telecom networks - 2 hours ago
DOGE access to Social Security, IRS data could create privacy and security risks, experts say | The Record from Recorded Future News - 3 hours ago
SOC Webinar: Better SOC with Interactive Malware Sandbox - Register for Free - 3 hours ago
Integrating LLMs into security operations using Wazuh - 3 hours ago
Rhadamanthys Infostealer Exploiting Microsoft Management Console to Execute Malicious Script - 3 hours ago
IBM OpenPages Vulnerability Let Attackers Steal Authentication Credentials - 3 hours ago
Microsoft fixes Power Pages zero-day bug exploited in attacks - 4 hours ago
Sophisticated Phishing Attacks Targeting Decision-Makers Including CEOs and CTOs - 4 hours ago
Microsoft testing fix for Windows 11 bug breaking SSH connections - 5 hours ago
New Zhong Malware Exploit AnyDesk Tool To Attack Fintech & Cryptocurrency - 6 hours ago
Fedora Linux Kernel Vulnerability Let Attackers Gain Access to Sensitive Data - 8 hours ago
Multiple NVIDIA CUDA Toolkit Vulnerabilities Let Attackers Trigger DoS - 8 hours ago
APT-C-28 Group Launched New Cyber Attack With Fileless RokRat Malware - 8 hours ago
Microsoft Power Pages 0-Day Vulnerability Exploited in the Wild - 8 hours ago
Microsoft Admin Guide to Block & Remove Apps on Endpoints - 9 hours ago
AWS Key Hunter - A Free Automated Tool to Detect Exposed AWS keys - 9 hours ago
Symantec Diagnostic Tool Vulnerability Let Attackers Escalate Privileges - 9 hours ago
NSA Added New Features to Supercharge Ghidra 11.3 - 10 hours ago
New NailaoLocker ransomware used against EU healthcare orgs - 10 hours ago