Qualys Research Team

NewsSecurity Vulnerabilities

Qualys TRU Discovers Two New Vulnerabilities in OpenSSH (CVE-2025-26465 & CVE-2025-26466)

Jason Davies 326 Views 0 Comments 1 min read

The Qualys Threat Research Unit (TRU) has discovered two vulnerabilities in OpenSSH. The first, identified as CVE-2025-26465, enables an active machine-in-the-middle attack on the OpenSSH client when the VerifyHostKeyDNS option is turned on. The second, CVE-2025-26466, impacts both the OpenSSH client and server, allowing a pre-authentication denial-of-service attack.

Read More
Security NewsNews

Over 16,400 Private and State-Owned Businesses Exposed to RegreSSHion Vulnerability

Jason Davies 808 Views 0 Comments 1 min read

A critical security flaw known as RegreSSHion (CVE-2024-6387) has put over 16,400 global organizations at risk of remote compromise, according to

Read More
Security VulnerabilitiesNews

Heap-Based Buffer Overflow in Sudo [CVE-2021-3156]

Duncan 3807 Views 0 Comments 1 min read

CVE number – CVE-2021-3156 The Qualys Research Team has discovered a heap overflow vulnerability in sudo, a near-ubiquitous utility available

Read More