Blog Post

Microsoft Defender Vulnerability Management Blog
7 MIN READ

Guidance for handling “regreSSHion” (CVE-2024-6387) using Microsoft Security capabilities

BrjannBrekkan's avatar
BrjannBrekkan
Icon for Microsoft rankMicrosoft
Jul 08, 2024
Investigating and assessing vulnerabilities within the software inventory is crucial, especially in light of high-severity vulnerabilities like the recent OpenSSH regreSSHion vulnerability. Such secu...
Updated Jul 25, 2024
Version 3.0
2vack's avatar
2vack
Copper Contributor
Jul 16, 2024

Opening a ticket will have a Microsoft tech lead you here. The document discusses blocking the ssh server app, blocking ssh traffic, or securing port 22.  In other words, do not use win32-SSH if it cannot be secured as we don't have a fix.  :facepalm: