Rebex not affected by xz vulnerability CVE-2024-3094

  |   Lukas Paluzga

Rebex and its products ARE NOT affected by a recently discovered xz and subsequently OpenSSH critical vulnerability CVE-2024-3094. The vulnerability creates a backdoor in SSH authentication and thus allows the attacker to gain unauthorized access to the system.

To avoid any confusion: The list of Rebex products safe from this vulnerability includes Rebex Buru SFTP Server, Rebex Total Pack (and all .NET components included in it).

Our free tools Jumble obfuscator, Rebex Tiny SFTP Server, Rebex TLS Proxy or Rebex Mail Converter are also not affected.