PuTTY SSH Client flaw allows of private keys recovery | allinfosecnews.com

April 16, 2024, 6:58 p.m. | Pierluigi Paganini

Security Affairs securityaffairs.co

The PuTTY Secure Shell (SSH) and Telnet client are impacted by a critical vulnerability that could be exploited to recover private keys. PuTTY tools from 0.68 to 0.80 inclusive are affected by a critical vulnerability, tracked as CVE-2024-31497, that resides in the code that generates signatures from ECDSA private keys which use the NIST P521 curve. […]

breaking news client code critical critical vulnerability cve cve-2024 cve-2024-31497 ecdsa exploited flaw hacking information security news it information security keys pierluigi paganini private private keys putty putty ssh recover recovery security shell signatures ssh telnet tools vulnerability

More from securityaffairs.co / Security Affairs

North Korea-linked IT workers infiltrated hundreds of US firms 13 hours ago | securityaffairs.co

arizona breaking news charged charges +15

Turla APT used two new backdoors to infiltrate a European ministry of foreign affairs 1 day, 7 hours ago | securityaffairs.co

apt backdoor backdoors breach +18

City of Wichita disclosed a data breach after the recent ransomware attack 1 day, 15 hours ago | securityaffairs.co

attack breach breaking news city +19

CISA adds D-Link DIR router flaws to its Known Exploited Vulnerabilities catalog 1 day, 18 hours ago | securityaffairs.co

agency binding operational directive bod breaking news +24

CISA adds Google Chrome zero-days to its Known Exploited Vulnerabilities catalog 1 day, 19 hours ago | securityaffairs.co

agency breaking news catalog chrome +35

North Korea-linked Kimsuky APT attack targets victims via Messenger 1 day, 21 hours ago | securityaffairs.co

accounts agency amp analysis +32

Electronic prescription provider MediSecure impacted by a ransomware attack 2 days, 7 hours ago | securityaffairs.co

attack australia breaking news cyber +26

Google fixes seventh actively exploited Chrome zero-day this year, the third in a week 2 days, 15 hours ago | securityaffairs.co

actively exploited address attacks breaking news +26

Santander: a data breach at a third-party provider impacted customers and employees 2 days, 19 hours ago | securityaffairs.co

aware bank breach breaking news +18

Information Security Engineers

@ D. E. Shaw Research | New York City

View on infosec-jobs.com

Technology Security Analyst

@ Halton Region | Oakville, Ontario, Canada

View on infosec-jobs.com

Senior Cyber Security Analyst

@ Valley Water | San Jose, CA

View on infosec-jobs.com

Sr. Staff Firmware Engineer – Networking & Firewall

@ Axiado | Bengaluru, India

View on infosec-jobs.com

Compliance Architect / Product Security Sr. Engineer/Expert (f/m/d)

@ SAP | Walldorf, DE, 69190

View on infosec-jobs.com

SAP Security Administrator

@ FARO Technologies | EMEA-Portugal

View on infosec-jobs.com