Cato CTRL Threat Brief: CVE-2024-6387 – OpenSSH RCE Vulnerability (“regreSSHion”)
CATO Networks
JULY 4, 2024
TL; DR Multiple versions of OpenSSH are vulnerable to remote code execution. There is no working public PoC, and researchers have only been able to exploit the vulnerability under unique lab conditions. Catos cloud infrastructure is NOT impacted Cato Sockets use one of the vulnerable OpenSSH versions, patches containing an upgrade to the latest OpenSSH version are in testing phase and will be released to the field for all supported Socket platforms (physical & virtual) for the following Soc
52 
Let's personalize your content