CVE-2024-6387 Response Resources - "regreSSHion"

TL;DR: Qualys research team discovered an issue where you can exploit OpenSSH with a “brute force” like timing attack from the outside. This will effect vulnerable OpenSSH library versions, which is essentially any public facing Linux server open on port 22.

attack brute can cve cve-2024 cve-2024-6387 effect exploit facing issue library linux openssh port port 22 public qualys regresshion research resources response server team timing attack vulnerable