CVE-2013-10065
Unknown Unknown - Not Provided
BaseFortify

Publication date: 2025-08-05

Last updated on: 2025-10-02

Assigner: VulnCheck

Description
A denial-of-service vulnerability exists in Sysax Multi-Server version 6.10 via its SSH daemon. A specially crafted SSH key exchange packet can trigger a crash in the service, resulting in loss of availability. The flaw is triggered during the handling of malformed key exchange data, including a non-standard byte (\x28) in place of the expected SSH protocol delimiter.
CVSS Scores
EPSS Scores
Probability:
Percentile:
Meta Information
Published
2025-08-05
Last Modified
2025-10-02
Generated
2026-05-06
AI Q&A
2025-08-05
EPSS Evaluated
2026-05-05
NVD
CVE-2013-10065
Affected Vendors & Products
Showing 1 associated CPE
Vendor Product Version / Range
sysax multi_server 6.10
Helpful Resources
Exploitability
CWE
CWE Icon
KEV
KEV Icon
CWE ID Description
CWE-248 An exception is thrown from a function, but it is not caught.
Attack-Flow Graph
AI Powered Q&A
Can you explain this vulnerability to me?

This vulnerability is a denial-of-service issue in Sysax Multi-Server version 6.10's SSH daemon. It occurs when the server processes a specially crafted SSH key exchange packet containing malformed data, including a non-standard byte instead of the expected SSH protocol delimiter. This causes the SSH service to crash, leading to loss of availability.


How can this vulnerability impact me? :

The vulnerability can cause the SSH service on Sysax Multi-Server 6.10 to crash, resulting in denial of service. This means legitimate users may be unable to access the server via SSH, disrupting operations and potentially causing downtime.


Ask Our AI Assistant
Need more information? Ask your question to get an AI reply (Powered by our expertise)
0/70
EPSS Chart