Security KB
CVE-2024-6387
Dell Technologies is reviewing the recent disclosure regarding the regreSSHion vulnerability in OpenSSH (CVE-2024-6387
). This disclosure was accompanied by an OpenSSH release. Details from the OpenSSH maintainers can be found in their official release notes
.
The OpenSSH maintainers have noted that while the vulnerability has been successfully exploited in lab conditions, on 32-bit Linux systems based on glibc using ASLR protections, the exploit required an average of six to eight hours of continuous attack attempts at maximum throughput of the attacked server.
The security of our products is a top priority and critical to protecting our customers. We will communicate any security updates or mitigations, if necessary, at https://www.dell.com/support/security.
Dell recommends customers subscribe to be notified when Dell Security Advisories are published on the Dell Security Advisories, Notices and Resources page. Learn more here, How to Subscribe to Dell Security Advisories.