openssh
Security Risk Profile
25
/100
lowSecurity Risk Score
Comprehensive risk assessment based on 126 vulnerabilities, EPSS scores, exploitation status, and remediation availability.
📅 Data spans from January 1, 1999 to present
126
Total CVEs
4
Critical+High
3
Exploited
4
Unpatched
Threat Assessment
Avg CVSS
3.8
Base severity
Avg EPSS
0%
Exploit probability
Unpatched
4
Critical/High
Risk Level
25/100
low
⚠️ 3 Active Exploits
Severity Distribution
Critical
1High
3Medium
18Low
10Exploit Likelihood
>50% chance
020-50%
05-20%
0<5%
1Age Distribution
Common Weaknesses (CWE)
1
Command Injection
3
2
Infoleak
2
3
Race Condition
1
4
OS Command Injection
1
5
Double Free
1
Most Affected Products
1. OpenSSH OpenSSH108
2. redhat/openssh8
3. OpenSSH OpenSSH Server8
4. OpenSSH sshd5
5. OpenBSD OpenSSH3
Recent Vulnerabilities
See more →https://seclists.org/oss-sec/2026/q2/28
unknown
Announce: OpenSSH 10.3 leased
4/7/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/27
unknown
Announce: OpenSSH 10.3 leased
4/6/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/26
unknown
Announce: OpenSSH 10.3 leased
4/6/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/23
unknown
Announce: OpenSSH 10.3 leased
4/6/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/21
unknown
Announce: OpenSSH 10.3 leased
4/3/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/18
unknown
Announce: OpenSSH 10.3 leased
4/3/2026🔧 No Patch
https://seclists.org/oss-sec/2026/q2/17
unknown
Announce: OpenSSH 10.3 leased
4/3/2026🔧 No Patch
REDHAT-BUG-2454506
CVSS 1.0low
4/2/2026🔧 No Patch
REDHAT-BUG-2454494
CVSS 1.0low
4/2/2026🔧 No Patch
REDHAT-BUG-2454500
CVSS 1.0low
4/2/2026🔧 No Patch
Monitor openssh in Real-Time
Get instant alerts when new vulnerabilities are discovered. Stay ahead of security threats with SecAlerts.