Kaspersky statement on the risk of regreSSHion vulnerability in corporate products
Kaspersky is aware of the vulnerability, CVE-2024-6387, which could allow attackers to gain root privileges on Linux servers.
Kaspersky has thoroughly examined its security products and can confirm that the risk of exploitation of this vulnerability is applicable only to some of these products. For administrators managing products that are vulnerable, the Kaspersky team has developed instructions to mitigate the risk entirely. Kaspersky is also working on the upcoming releases of the affected products to address this issue.
To see the list of affected products and mitigation instructions, please visit the link: https://support.kaspersky.com/vulnerability/list-of-advisories/12430#120724. The links to patches for the products will also be posted on the advisory page.
Attributable to Kaspersky