Summary

Acunetix 360 detected an outdated OpenSSH Server, which might possibly be vulnerable to CVE-2024-6387, also known as RegreSSHion attack.

Impact

An attacker can exploit this vulnerability to run arbitrary code.

Actions To Take

Please upgrade your OpenSSH server to the latest version. This issue only affects you, if you are using an operating system other than OpenBSD.

Severity

Critical

Classification

PCI v3.2-6.5.1 CAPEC-26 CWE-366 HIPAA-164.306(a) 164.308(a) ISO27001-A.14.2.5 OWASP 2013-A9 OWASP 2017-A9