all InfoSec news logo
all InfoSec news - Your InfoSec news aggregator
Log in Sign up
all InfoSec news

Flaw in PuTTY P-521 ECDSA signature generation leaks SSH private keys

Add to bookmarks
April 16, 2024, 2:15 p.m. | MalBot

Malware Analysis, News and Indicators - Latest topics malware.news

CVE-2024-31497 is a vulnerability in PuTTY, a popular Windows SSH client, relating to a flaw in its P-521 ECDSA implementation. This vulnerability is known to affect versions 0.68 through 0.80, which span the last 7 years. This potentially affects anyone who has used a P-521 ECDSA SSH key with an affected version, regardless of whether the ECDSA key was generated by PuTTY or another application. Other applications that utilise PuTTY for SSH or other purposes, such as FileZilla, are also …

client cve cve-2024 ecdsa flaw forensics implementation key keys leaks popular private private keys putty signature span ssh ssh key vulnerability windows

Visit resource

More from malware.news / Malware Analysis, News and Indicators - Latest topics

CISO Perspectives: Protecting Legacy Network Devices with ZTNA an hour ago | malware.news
attention aware ciso customers +20
London Drugs pharmacy closes all stores to respond to cyber incident 2 hours ago | malware.news
article canada closures cyber +11
HPE security advisory (AV24-232) 4 hours ago | malware.news
advisory article canadian canadian centre for cyber security +7
SonicWall security advisory (AV24-233) 4 hours ago | malware.news
advisory article canadian canadian centre for cyber security +7
Critical infrastructure cyberattacks pushed NSA to unmask thousands of U.S. identities through spying law 4 hours ago | malware.news
act critical critical infrastructure cyberattacks +14
Change Healthcare incident caused by compromised Citrix credentials 4 hours ago | malware.news
article ceo change change healthcare +15
Stolen Citrix Credentials Led to Change Ransomware Attack 5 hours ago | malware.news
access attack authentication ceo +23
AI, Okta, Chrome, Quantum, Kaiser Permanente, FTC, FCC, NCSC, Josh Marpet, and more. - SWN … 5 hours ago | malware.news
article chrome fcc ftc +9
Navigating the cybersecurity career maze 7 hours ago | malware.news
article career careers cyber +12

Jobs in InfoSec / Cybersecurity

Post a job on infosec-jobs.com Find talent on infosec-jobs.com

SOC 2 Manager, Audit and Certification

@ Deloitte | US and CA Multiple Locations
View on infosec-jobs.com

Emergency Management Invoice Compliance Reviewer

@ AC Disaster Consulting | Denver, Colorado, United States - Remote
View on infosec-jobs.com

Threat Intelligence Librarian

@ Microsoft | Cheltenham, Gloucestershire, United Kingdom
View on infosec-jobs.com

Cyber Content Operations Manager - Remote in UK

@ Immersive Labs | United Kingdom
View on infosec-jobs.com

(Junior) Security Engineer (m/w/d)

@ CHECK24 | Berlin, Germany
View on infosec-jobs.com

Cyber Security

@ Necurity Solutions | Bengaluru, Karnataka, India
View on infosec-jobs.com
View more jobs