exploitDog - Комплексное решение для обнаружения, оценки и устранения уязвимостей.

БДУ ФСТЭК

Microsoft MSRC

NVD

Oracle ELSA

Red Hat CVE

РЕД ОС

Rocky RLSA

SUSE CVRF

Ubuntu

Debian

Github

Количество 10

BDU:2021-03492

почти 5 лет назад

Уязвимость функции toremote средства криптографической защиты OpenSSH, позволяющая нарушителю выполнить произвольную команду

CVSS3: 8.8

EPSS: Средний

ROS-20241017-03

8 месяцев назад

Уязвимость openssh

CVSS3: 8.8

EPSS: Средний

CVE-2020-15778

почти 5 лет назад

** DISPUTED ** scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."

CVSS3: 7.8

EPSS: Средний

CVE-2020-15778

почти 5 лет назад

scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."

CVSS3: 7.8

EPSS: Средний

CVE-2020-15778

почти 5 лет назад

CVSS3: 7.8

EPSS: Средний

CVE-2020-15778

почти 5 лет назад

CVSS3: 7.8

EPSS: Средний

CVE-2020-15778

почти 5 лет назад

scp in OpenSSH through 8.3p1 allows command injection in the scp.c tor ...

CVSS3: 7.8

EPSS: Средний

RLSA-2024:3166

около 2 месяцев назад

Moderate: openssh security update

EPSS: Средний

GHSA-cvxm-8hgf-6m6m

около 3 лет назад

scp in OpenSSH through 8.3p1 allows command injection in scp.c remote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."

CVSS3: 7.8

EPSS: Средний

ELSA-2024-3166

около 1 года назад

ELSA-2024-3166: openssh security update (MODERATE)

EPSS: Низкий

Уязвимостей на страницу

Уязвимость	CVSS	EPSS	Опубликовано
BDU:2021-03492 Уязвимость функции toremote средства криптографической защиты OpenSSH, позволяющая нарушителю выполнить произвольную команду	CVSS3: 8.8	66% Средний	почти 5 лет назад
ROS-20241017-03 Уязвимость openssh	CVSS3: 8.8	66% Средний	8 месяцев назад
CVE-2020-15778 DISPUTED scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."	CVSS3: 7.8	66% Средний	почти 5 лет назад
CVE-2020-15778 scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."	CVSS3: 7.8	66% Средний	почти 5 лет назад
CVE-2020-15778 scp in OpenSSH through 8.3p1 allows command injection in the scp.c toremote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."	CVSS3: 7.8	66% Средний	почти 5 лет назад
CVE-2020-15778	CVSS3: 7.8	66% Средний	почти 5 лет назад
CVE-2020-15778 scp in OpenSSH through 8.3p1 allows command injection in the scp.c tor ...	CVSS3: 7.8	66% Средний	почти 5 лет назад
RLSA-2024:3166 Moderate: openssh security update		66% Средний	около 2 месяцев назад
GHSA-cvxm-8hgf-6m6m scp in OpenSSH through 8.3p1 allows command injection in scp.c remote function, as demonstrated by backtick characters in the destination argument. NOTE: the vendor reportedly has stated that they intentionally omit validation of "anomalous argument transfers" because that could "stand a great chance of breaking existing workflows."	CVSS3: 7.8	66% Средний	около 3 лет назад
ELSA-2024-3166 ELSA-2024-3166: openssh security update (MODERATE)			около 1 года назад

Уязвимостей на страницу