🛡️ CVE-2024-6387
8.1
CVSS Score
0 Low4 Medium7 High9 Critical10
Description
A security regression (CVE-2006-5051) was discovered in OpenSSH's server (sshd). There is a race condition which can lead sshd to handle some signals in an unsafe manner. An unauthenticated, remote attacker may be able to trigger it by failing to authenticate within a set time period.
Details
Severity
HIGH
CVSS Score
8.1
CVSS Vector
CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:H/I:H/A:H
CWE
CWE-364
Public Exploit
⚠️ Yes
Source
NVD
Published
2024-07-01
Updated
2026-06-02
Modified
2026-05-12
Affected Packages
| Software | From version | Fixed in |
|---|---|---|
| 500f-firmware | — | — |
| 8300-firmware | — | — |
| 8700-firmware | — | — |
| a150-firmware | — | — |
| a1k-firmware | — | — |
| a220-firmware | — | — |
| a250-firmware | — | — |
| a400-firmware | — | — |
| a70-firmware | — | — |
| a700s-firmware | — | — |
| a800-firmware | — | — |
| a90-firmware | — | — |
| a900-firmware | — | — |
| a9500-firmware | — | — |
| active-iq-unified-manager | — | — |
| almalinux | — | — |
| amazon-linux | — | — |
| bootstrap-os | — | — |
| c190-firmware | — | — |
| c250-firmware | — | — |
| c400-firmware | — | — |
| c800-firmware | — | — |
| debian-linux | — | — |
| e-series-santricity-os-controller | 11.0.0 | 11.70.2 |
| enterprise-linux | — | — |
| enterprise-linux-eus | — | — |
| enterprise-linux-for-arm-64 | — | — |
| enterprise-linux-for-arm-64-eus | — | — |
| enterprise-linux-for-ibm-z-systems | — | — |
| enterprise-linux-for-ibm-z-systems-eus | — | — |
| enterprise-linux-for-power-little-endian | — | — |
| enterprise-linux-for-power-little-endian-eus | — | — |
| enterprise-linux-server-aus | — | — |
| eos | 4.32.0 | 4.32.1f |
| fas2720-firmware | — | — |
| fas2750-firmware | — | — |
| fas2820-firmware | — | — |
| freebsd | — | — |
| linux-enterprise-micro | — | — |
| macos | 14.0 | 14.6 |
| netbsd | — | 10.0.0 |
| ontap | — | — |
| ontap-select-deploy-administration-utility | — | — |
| ontap-tools | — | — |
| openshift-container-platform | — | — |
| openssh | — | — |
| sma-6200-firmware | — | — |
| sma-6210-firmware | — | — |
| sma-7200-firmware | — | — |
| sma-7210-firmware | — | — |
| sma-8200v-firmware | — | — |
| sra-ex-7000-firmware | — | — |
| ubuntu-linux | — | — |
References
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4312
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4340
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4389
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4469
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4474
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4479
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4484
Third Party Advisory https://access.redhat.com/security/cve/CVE-2024-6387
Third Party Advisory https://bugzilla.redhat.com/show_bug.cgi?id=2294604
Exploit, Third Party Advisory https://santandersecurityresearch.github.io/blog/sshing_the_masses.html
Release Notes, Third Party Advisory https://www.openssh.com/txt/release-9.8
Exploit, Third Party Advisory https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt
Mailing List http://seclists.org/fulldisclosure/2024/Jul/18
Mailing List http://seclists.org/fulldisclosure/2024/Jul/19
Mailing List http://seclists.org/fulldisclosure/2024/Jul/20
Exploit, Mailing List http://www.openwall.com/lists/oss-security/2024/07/03/11
Mailing List, Patch http://www.openwall.com/lists/oss-security/2024/07/03/3
Exploit, Mailing List http://www.openwall.com/lists/oss-security/2024/07/04/2
Exploit, Mailing List http://www.openwall.com/lists/oss-security/2024/07/08/2
Exploit, Mailing List http://www.openwall.com/lists/oss-security/2024/07/09/5
Exploit, Mailing List http://www.openwall.com/lists/oss-security/2024/07/10/1
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4312
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4340
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4389
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4469
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4474
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4479
Third Party Advisory https://access.redhat.com/errata/RHSA-2024:4484
Third Party Advisory https://access.redhat.com/security/cve/CVE-2024-6387
Third Party Advisory https://archlinux.org/news/the-sshd-service-needs-to-be-restarted-after-upgrading-to-openssh-98p1/
Press/Media Coverage, Third Party Advisory https://arstechnica.com/security/2024/07/regresshion-vulnerability-in-openssh-gives-attackers-root-on-linux/
Press/Media Coverage, Third Party Advisory https://blog.qualys.com/vulnerabilities-threat-research/2024/07/01/regresshion-remote-unauthenticated-code-execution-vulnerability-in-openssh-server
Third Party Advisory https://bugzilla.redhat.com/show_bug.cgi?id=2294604
Third Party Advisory https://explore.alas.aws.amazon.com/CVE-2024-6387.html
Issue Tracking https://forum.vmssoftware.com/viewtopic.php?f=8&t=9132
Issue Tracking https://github.com/AlmaLinux/updates/issues/629
Issue Tracking https://github.com/Azure/AKS/issues/4379
Issue Tracking https://github.com/PowerShell/Win32-OpenSSH/discussions/2248
Issue Tracking https://github.com/PowerShell/Win32-OpenSSH/issues/2249
Issue Tracking https://github.com/microsoft/azurelinux/issues/9555
Issue Tracking https://github.com/oracle/oracle-linux/issues/149
Issue Tracking https://github.com/rapier1/hpn-ssh/issues/87
Third Party Advisory https://github.com/zgzhang/cve-2024-6387-poc
Third Party Advisory https://lists.almalinux.org/archives/list/[email protected]/thread/23BF5BMGFVEVUI2WNVAGMLKT557EU7VY/
Mailing List, Release Notes https://lists.mindrot.org/pipermail/openssh-unix-announce/2024-July/000158.html
Mailing List, Patch https://lists.mindrot.org/pipermail/openssh-unix-dev/2024-July/041431.html
Issue Tracking, Patch https://news.ycombinator.com/item?id=40843778
Broken Link https://packetstorm.news/files/id/190587/
Third Party Advisory https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0010
Exploit, Third Party Advisory https://santandersecurityresearch.github.io/blog/sshing_the_masses.html
Third Party Advisory https://security-tracker.debian.org/tracker/CVE-2024-6387
Third Party Advisory https://security.netapp.com/advisory/ntap-20240701-0001/
Third Party Advisory https://sig-security.rocky.page/issues/CVE-2024-6387/
Press/Media Coverage, Third Party Advisory https://stackdiary.com/openssh-race-condition-in-sshd-allows-remote-code-execution/
Third Party Advisory https://support.apple.com/kb/HT214118
Third Party Advisory https://support.apple.com/kb/HT214119
Third Party Advisory https://support.apple.com/kb/HT214120
Third Party Advisory https://ubuntu.com/security/CVE-2024-6387
Third Party Advisory https://ubuntu.com/security/notices/USN-6859-1
Third Party Advisory https://www.akamai.com/blog/security-research/2024-openssh-vulnerability-regression-what-to-know-and-do
Third Party Advisory https://www.arista.com/en/support/advisories-notices/security-advisory/19904-security-advisory-0100
Third Party Advisory https://www.freebsd.org/security/advisories/FreeBSD-SA-24:04.openssh.asc
Release Notes, Third Party Advisory https://www.openssh.com/txt/release-9.8
Exploit, Third Party Advisory https://www.qualys.com/2024/07/01/cve-2024-6387/regresshion.txt
Third Party Advisory https://www.splunk.com/en_us/blog/security/cve-2024-6387-regresshion-vulnerability.html
Third Party Advisory https://www.suse.com/security/cve/CVE-2024-6387.html
Press/Media Coverage, Third Party Advisory https://www.theregister.com/2024/07/01/regresshion_openssh/
Exploit, Third Party Advisory https://www.vicarius.io/vsociety/posts/regresshion-an-openssh-regression-error-cve-2024-6387
Similar Threats
- High CVE-2024-6119
- High CVE-2024-1086
- Medium CVE-2023-25136
- High CVE-2022-0778
Patch Gap Protection
Running software with known vulnerabilities?
BotEraser can help reduce exposure by blocking IPs associated with exploit activity — even before a patch is available.
Start Free →No credit card required · Results in minutes
ⓘ Data Notice: The information presented above has been compiled from publicly available internet sources. Boteraser aggregates this data solely for informational purposes and does not independently classify, evaluate, or endorse any findings about the vulnerabilities listed. The accuracy and completeness of this information is the sole responsibility of the original publishers. Boteraser and its operators accept no liability for any decisions made based on this data.
