CVSS: 9.8EPSS: 0%CPEs: 3EXPL: 0CVE-2020-9355 – Debian Security Advisory 4637-1
https://notcve.org/view.php?id=CVE-2020-9355
23 Feb 2020 — danfruehauf NetworkManager-ssh before 1.2.11 allows privilege escalation because extra options are mishandled. danfruehauf NetworkManager-ssh versiones anteriores a 1.2.11, permite una escalada de privilegios porque las opciones extra son manejadas inapropiadamente. Kobus van Schoor discovered that network-manager-ssh, a plugin to provide VPN integration for SSH in NetworkManager, is prone to a privilege escalation vulnerability. A local user with privileges to modify a connection can take advantage of this... • https://bugzilla.redhat.com/show_bug.cgi?id=1803499 •
CVSS: 7.5EPSS: 0%CPEs: 1EXPL: 0CVE-2017-2659
https://notcve.org/view.php?id=CVE-2017-2659
20 Mar 2019 — It was found that dropbear before version 2013.59 with GSSAPI leaks whether given username is valid or invalid. When an invalid username is given, the GSSAPI authentication failure was incorrectly counted towards the maximum allowed number of password attempts. Se ha descubierto que dropbear, en versiones anteriores a la 2013.59 con GSSAPI filtra si un nombre de usuario es válido o no. Cuando se proporciona un nombre de usuario inválido, el error de autenticación de GSSAPI se contó erróneamente hacia el máx... • https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2017-2659 • CWE-209: Generation of Error Message Containing Sensitive Information CWE-287: Improper Authentication •
CVSS: 5.3EPSS: 0%CPEs: 2EXPL: 0CVE-2018-15599
https://notcve.org/view.php?id=CVE-2018-15599
21 Aug 2018 — The recv_msg_userauth_request function in svr-auth.c in Dropbear through 2018.76 is prone to a user enumeration vulnerability because username validity affects how fields in SSH_MSG_USERAUTH messages are handled, a similar issue to CVE-2018-15473 in an unrelated codebase. La función recv_msg_userauth_request en svr-auth.c en Dropbear hasta la versión 2018.76 es propensa a una vulnerabilidad de enumeración de usuarios porque la validez de los nombres de usuarios afecta a cómo se manejan los campos en los men... • http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2018q3/002108.html • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-14440
https://notcve.org/view.php?id=CVE-2018-14440
20 Jul 2018 — An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. SQL injection exists via the admin/noticeManageAction_queryNotice.action noticeInfo parameter. Se ha descubierto un problema en cckevincyh SSH CompanyWebsite hasta el 03/05/2018. Existe una inyección SQL mediante el parámetro noticeInfo en admin/noticeManageAction_queryNotice.action. • https://github.com/cckevincyh/CompanyWebsite/issues/3 • CWE-89: Improper Neutralization of Special Elements used in an SQL Command ('SQL Injection') •
CVSS: 9.8EPSS: 0%CPEs: 1EXPL: 0CVE-2018-14441
https://notcve.org/view.php?id=CVE-2018-14441
20 Jul 2018 — An issue was discovered in cckevincyh SSH CompanyWebsite through 2018-05-03. admin/admin/fileUploadAction_fileUpload.action allows arbitrary file upload, as demonstrated by a .jsp file with the image/jpeg content type. Se ha descubierto un problema en cckevincyh SSH CompanyWebsite hasta el 03/05/2018. admin/admin/fileUploadAction_fileUpload.action permite la subida de archivos arbitrarios, tal y como queda demostrado con un archivo .jsp con el tipo de contenido image/jpeg. • https://github.com/cckevincyh/CompanyWebsite/issues/4 • CWE-434: Unrestricted Upload of File with Dangerous Type •
CVSS: 8.8EPSS: 3%CPEs: 4EXPL: 0CVE-2017-9078
https://notcve.org/view.php?id=CVE-2017-9078
19 May 2017 — The server in Dropbear before 2017.75 might allow post-authentication root remote code execution because of a double free in cleanup of TCP listeners when the -a option is enabled. El servidor en Dropbear anteriores a 2017.75 podría permitir la post-autenticación de ejecución de código remoto con privilegios de root debido a una doble liberación en la limpieza de los TCP listeners cuando la opción -a está habilitada. • http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2017q2/001985.html • CWE-415: Double Free •
CVSS: 4.7EPSS: 0%CPEs: 2EXPL: 0CVE-2017-9079
https://notcve.org/view.php?id=CVE-2017-9079
19 May 2017 — Dropbear before 2017.75 might allow local users to read certain files as root, if the file has the authorized_keys file format with a command= option. This occurs because ~/.ssh/authorized_keys is read with root privileges and symlinks are followed. Dropbear anteriores a 2017.75 podría permitir a usuarios locales leer ciertos archivos como usuario root, si el archivo tiene el formato de archivo authorized_keys con un comando=opción. Esto ocurre porque ~ /.ssh/authorized_keys se lee con privilegios de root y... • http://lists.ucc.gu.uwa.edu.au/pipermail/dropbear/2017q2/001985.html • CWE-732: Incorrect Permission Assignment for Critical Resource •
CVSS: 8.8EPSS: 4%CPEs: 1EXPL: 0CVE-2016-7408 – Gentoo Linux Security Advisory 201702-23
https://notcve.org/view.php?id=CVE-2016-7408
21 Feb 2017 — The dbclient in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via a crafted (1) -m or (2) -c argument. El dbclient en Dropbear SSH en versiones anteriores a 2016.74 permite a atacantes remotos ejecutar código arbitrario a través de un argumento (1) -m o (2) -c manipulado. Multiple vulnerabilities have been found in Dropbear, the worst of which allows remote attackers to execute arbitrary code. Versions less than 2016.74 are affected. • http://www.openwall.com/lists/oss-security/2016/09/15/2 • CWE-284: Improper Access Control •
CVSS: 5.5EPSS: 0%CPEs: 1EXPL: 0CVE-2016-7409 – Gentoo Linux Security Advisory 201702-23
https://notcve.org/view.php?id=CVE-2016-7409
21 Feb 2017 — The dbclient and server in Dropbear SSH before 2016.74, when compiled with DEBUG_TRACE, allows local users to read process memory via the -v argument, related to a failed remote ident. El dbclient y el servidor en Dropbear SSH en versiones anteriores a 2016.74, cuando se compila con DEBUG_TRACE, permite a usuarios locales leer la memoria del proceso a través del argumento -v, relacionado con un ident remoto fallido. Multiple vulnerabilities have been found in Dropbear, the worst of which allows remote attac... • http://www.openwall.com/lists/oss-security/2016/09/15/2 • CWE-200: Exposure of Sensitive Information to an Unauthorized Actor •
CVSS: 10.0EPSS: 1%CPEs: 1EXPL: 0CVE-2016-7407 – Gentoo Linux Security Advisory 201702-23
https://notcve.org/view.php?id=CVE-2016-7407
21 Feb 2017 — The dropbearconvert command in Dropbear SSH before 2016.74 allows attackers to execute arbitrary code via a crafted OpenSSH key file. El comando dropbearconvert en Dropbear SSH en versiones anteriores a 2016.74 permite a atacantes ejecutar código arbitrario a través de un archivo OpenSSH clave manipulado. Multiple vulnerabilities have been found in Dropbear, the worst of which allows remote attackers to execute arbitrary code. Versions less than 2016.74 are affected. • http://www.openwall.com/lists/oss-security/2016/09/15/2 • CWE-20: Improper Input Validation •