Staging Environment: Content and features may be unstable or change without notice.
Search for vulnerabilities
Vulnerability details: VCID-dpkx-2htu-4yan
Vulnerability ID VCID-dpkx-2htu-4yan
Aliases CVE-2008-2285
Summary The ssh-vulnkey tool on Ubuntu Linux 7.04, 7.10, and 8.04 LTS does not recognize authorized_keys lines that contain options, which makes it easier for remote attackers to exploit CVE-2008-0166 by guessing a key that was not identified by this tool.
Status Published
Exploitability 0.5
Weighted Severity 0.0
Risk None
Affected and Fixed Packages Package Details
Weaknesses (0)
There are no known CWE.
System Score Found at
epss 0.00356 https://api.first.org/data/v1/epss?cve=CVE-2008-2285
epss 0.00356 https://api.first.org/data/v1/epss?cve=CVE-2008-2285
epss 0.00356 https://api.first.org/data/v1/epss?cve=CVE-2008-2285
Reference id Reference type URL
https://api.first.org/data/v1/epss?cve=CVE-2008-2285
https://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2008-2285
USN-612-5 https://usn.ubuntu.com/612-5/
No exploits are available.
There are no known vectors.
Exploit Prediction Scoring System (EPSS)
Percentile 0.58261
EPSS Score 0.00356
Published At June 11, 2026, 12:55 p.m.
Date Actor Action Source VulnerableCode Version
2026-06-11T20:24:09.398687+00:00 Debian Oval Importer Import https://www.debian.org/security/oval/oval-definitions-bullseye.xml.bz2 38.6.0