OpenSSH 发现严重零日漏洞 – 立即修补
1 分•作者: oceanstack•7 个月前
OpenSSH中发现了一个关键的零日漏洞(CVE-2025-38897),影响运行9.3及更早版本的、基于Unix的大多数系统。该漏洞允许在特定条件下进行未经身份验证的远程代码执行,对面向公众的服务器构成严重威胁。攻击者已开始积极利用该漏洞。
查看原文
A critical zero-day vulnerability (CVE-2025-38897) has been discovered in OpenSSH, affecting most Unix-based systems running versions 9.3 and earlier. The flaw allows unauthenticated remote code execution under specific conditions, posing a serious risk to public-facing servers. The exploit has already been seen in active use by threat actors.