Openssh
by Openbsd
Take action — actively targeted
Openssh is actively targeted by attackers. A significant proportion of its known vulnerabilities are being exploited.
What to do
- Apply all available updates immediately
- Review your exposure — is this internet-facing?
- Monitor vendor advisories for this product
What Attackers Target
Vulnerabilities with high exploit probability
40.0%
Confirmed actively exploited (CISA)
0.0%
Public exploit code available
8.9%
Based on 45 known vulnerabilities. Percentages show the proportion that are actively dangerous — a low percentage means most vulnerabilities in this product are not being exploited.
Most Dangerous Vulnerabilities
| CVE | CVSS | Exploit Probability | Confirmed |
|---|---|---|---|
| CVE-2016-6210 | 5.9 | 92.5% | — |
| CVE-2018-15473 | 5.3 | 90.4% | — |
| CVE-2023-25136 | 6.5 | 88.3% | — |
| CVE-2016-6515 | 7.5 | 81.6% | — |
| CVE-2025-26465 | 6.8 | 73.6% | — |
| CVE-2016-0777 | 6.5 | 67.2% | — |
| CVE-2023-38408 | 9.8 | 64.4% | — |
| CVE-2020-15778 | 7.4 | 61.5% | — |
| CVE-2025-26466 | 5.9 | 60.4% | — |
| CVE-2019-6110 | 6.8 | 57.6% | — |
| CVE-2023-48795 | 5.9 | 56.7% | — |
| CVE-2019-6111 | 5.9 | 54.4% | — |
| CVE-2024-6387 | 8.1 | 44.6% | — |
| CVE-2016-3115 | 6.4 | 44.0% | — |
| CVE-2002-0639 | 9.8 | 36.7% | — |
| CVE-2016-8858 | 7.5 | 27.1% | — |
| CVE-2023-51385 | 6.5 | 16.5% | — |
| CVE-2016-20012 | 5.3 | 14.6% | — |
| CVE-2019-6109 | 6.8 | 9.7% | — |
| CVE-2018-20685 | 5.3 | 3.4% | — |
55
/ 100
high-risk
Active Threat
50/50 · Critical
Exploit Availability
5/50 · Minimal
Score uses Wilson score intervals to account for sample size. Products with few CVEs are scored conservatively.