VDB
DEBIAN-CVE-2021-28041
DEBIAN-CVE-2021-28041
PUBLISHED
CVSS 7.099999904632568 HIGH
ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an agent to an attacker-controlled host.
Risk Scores
CVSS 3.1
7.099999904632568
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H
Affected Products
| Vendor | Product | Versions |
|---|---|---|
| Debian:12 | openssh | 0, 0, 0 |
| Debian:14 | openssh | 0, 0, 0 |
| Debian:13 | openssh | 0, 0, 0 |
| Debian:11 | openssh | 0, 0, 0 |
Exploit Intelligence
- cve_db.json (github-poc)
Timeline
- Mar 5, 2021 CVE Published
- Apr 28, 2026 CVE Updated