- cross-posted to:
- linux@lemmy.ml
- cross-posted to:
- linux@lemmy.ml
A severe vulnerability in OpenSSH, dubbed “regreSSHion” (CVE-2024-6387), has been discovered by the Qualys Threat Research Unit, potentially exposing
A severe vulnerability in OpenSSH, dubbed “regreSSHion” (CVE-2024-6387), has been discovered by the Qualys Threat Research Unit, potentially exposing
Yeah, exactly. Very impracticable.
But, eventually exploitable is still a pretty major concern for anybody who has systems running longer than a few days at a time.
I can’t imagine any system of influence running an exposed ssh without some further protection from connection abuse like fail2ban.
True, an RCE is always a serious thing. Just saying it’s not exactly catastrophic like others have been more so.
Reminds me of the node-ip guy making thn repo read only because of amateur researchers filling up cve s