If you want, I can: (a) search vendor release notes and CVE/NVD pages now and summarize findings, or (b) draft firewall and hardening commands for Windows hosts running WinSSHD 8.48. Which would you like?
: Versions in the 8.xx branch were found to have a race condition that could cause the server to crash on startup. bitvise winsshd 8.48 exploit
Bitvise SSH Server (formerly WinSSHD) version 8.48 was released on May 24, 2021. While it did not have a high-profile "named" exploit specifically targeting its unique code, it is vulnerable to the Terrapin attack If you want, I can: (a) search vendor
to mitigate the Terrapin attack and other security improvements. For Security Researchers: Bitvise SSH Server (formerly WinSSHD) version 8
The Anatomy of the Unseen: Probing the Defenses of Modern SSH Servers
John ran the exploit, and to his delight, it worked. He was able to bypass authentication and gain shell access to the test system.
that could be vulnerable to side-channel attacks. While 8.48 is later than 8.35, Bitvise recommends version 9.xx for more robust cryptographic protections. SCP Error Handling
WhatsApp
Location