Forum Discussion
RegreSSHion Vulnerability Remediation
Being that a critical CVE has been identified (RegreSSHion) and Windows Server 2025 has OpenSSH installed by default, what is Microsoft's plan to remediate this? The feature is disabled by default, ...
xTheMan42 MS Windows Server vNEXT (2025) is a preview product, of course it will be out of compliance in many ways. Feature should update through Windows Update or later builds, but who knows when.
I don't disagree, but the goal is to identify these issues and get them remediated before GA.
Still, is there a statement from Microsoft that its OpenSSH build is affected? I thought it was related with glibc, and Qualys said that macOS/Windows exploitation was uncertain, and it required further analisys.
