regreSSHion Vulnerability: Key Insights & Strategies to De-risk Your Environment

Presented by

Himanshu Kathpal-Sr Director, Product Management, Platform & Sensors and Saeed Abbasi-Product Manager, Vulnerability Research

About this talk

On July 1, 2024, the Qualys Threat Research Unit (TRU) announced the discovery of a Remote Unauthenticated Code Execution (RCE) vulnerability in OpenSSH’s server (sshd) in glibc-based Linux systems (CVE-2024-6387). This vulnerability enables remote code execution on OpenSSH's default configuration without authentication or user interaction, granting full root privileges and posing a significant security risk. If exploited, it could lead to full system compromise where an attacker can take over systems, install malware, manipulate data, and create backdoors for persistent access. It could also result in significant data breaches and leakage, giving attackers access to all data stored on the system, including sensitive or proprietary information that could be stolen or publicly disclosed. Given the risk presented by this vulnerability, our team is putting on a special presentation to unpack everything you need to know to combat it. Join Himanshu Kathpal and Saeed Abbasi on Wednesday, July 3, 2024, at 9:00 A.M PST to find out: - The full details of the vulnerability - The potential impact of regreSSHion - Step-by-step guidance to mitigate the risk - Details on how Qualys can help
Related topics:

More from this channel

Upcoming talks (8)
On-demand talks (129)
Subscribers (73496)
Join us for this informative technology series for insights into emerging security trends that every IT professional should know. These brief sessions will give you an opportunity to discover best practices from market leaders as well as hands-on advice from industry experts on a variety of security and compliance topics. Let Qualys help keep you up-to-date with cost-effective and efficient technology trends. Choose the topic that interests you or plan to attend the entire series to make sure you stay ahead of the curve.