VDB

DEBIAN-CVE-2021-28041

DEBIAN-CVE-2021-28041 PUBLISHED CVSS 7.099999904632568 HIGH

ssh-agent in OpenSSH before 8.5 has a double free that may be relevant in a few less-common scenarios, such as unconstrained agent-socket access on a legacy operating system, or the forwarding of an agent to an attacker-controlled host.

Risk Scores

CVSS 3.1
7.099999904632568
CVSS:3.1/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Affected Products

VendorProductVersions
Debian:12openssh0, 0, 0
Debian:14openssh0, 0, 0
Debian:13openssh0, 0, 0
Debian:11openssh0, 0, 0

Exploit Intelligence

Timeline

  • Mar 5, 2021 CVE Published
  • Apr 28, 2026 CVE Updated
Open in Interactive Console →
$ Console Community · 100/wk Open console ›