Количество 22
Количество 22
CVE-2019-6109
An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.
CVE-2019-6109
An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.
CVE-2019-6109
An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.
CVE-2019-6109
An issue was discovered in OpenSSH 7.9. Due to missing character encod ...
GHSA-2pqm-q853-jfvf
An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c.
BDU:2019-03791
Уязвимость функции refresh_progress_meter() (progressmeter.c) средства криптографической защиты OpenSSH, позволяющая нарушителю раскрыть защищаемую информацию или выполнить произвольный код
BDU:2019-00832
Уязвимость реализаций утилиты для удаленного копирования файлов scp, связанная с недостатками контроля доступа, позволяющая нарушителю скрывать имя передаваемого файла
openSUSE-SU-2019:1602-1
Security update for openssh
openSUSE-SU-2019:0307-1
Security update for openssh
SUSE-SU-2019:1524-1
Security update for openssh
SUSE-SU-2019:14030-1
Security update for openssh
SUSE-SU-2019:14016-1
Security update for openssh
SUSE-SU-2019:0941-1
Security update for openssh
SUSE-SU-2019:0496-1
Security update for openssh
ELSA-2019-3702
ELSA-2019-3702: openssh security, bug fix, and enhancement update (MODERATE)
openSUSE-SU-2019:0093-1
Security update for openssh
openSUSE-SU-2019:0091-1
Security update for openssh
SUSE-SU-2019:13931-1
Security update for openssh
SUSE-SU-2019:0132-1
Security update for openssh
SUSE-SU-2019:0126-1
Security update for openssh
Уязвимостей на страницу
Уязвимость | CVSS | EPSS | Опубликовано | |
|---|---|---|---|---|
 | CVE-2019-6109 An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c. | CVSS3: 6.8 | 8% Низкий | больше 6 лет назад |
 | CVE-2019-6109 An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c. | CVSS3: 3.1 | 8% Низкий | почти 7 лет назад |
 | CVE-2019-6109 An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c. | CVSS3: 6.8 | 8% Низкий | больше 6 лет назад |
| CVE-2019-6109 An issue was discovered in OpenSSH 7.9. Due to missing character encod ... | CVSS3: 6.8 | 8% Низкий | больше 6 лет назад |
| GHSA-2pqm-q853-jfvf An issue was discovered in OpenSSH 7.9. Due to missing character encoding in the progress display, a malicious server (or Man-in-The-Middle attacker) can employ crafted object names to manipulate the client output, e.g., by using ANSI control codes to hide additional files being transferred. This affects refresh_progress_meter() in progressmeter.c. | CVSS3: 6.8 | 8% Низкий | больше 3 лет назад |
 | BDU:2019-03791 Уязвимость функции refresh_progress_meter() (progressmeter.c) средства криптографической защиты OpenSSH, позволяющая нарушителю раскрыть защищаемую информацию или выполнить произвольный код | CVSS3: 6.8 | 8% Низкий | больше 6 лет назад |
| BDU:2019-00832 Уязвимость реализаций утилиты для удаленного копирования файлов scp, связанная с недостатками контроля доступа, позволяющая нарушителю скрывать имя передаваемого файла | CVSS3: 6.8 | 8% Низкий | больше 6 лет назад |
 | openSUSE-SU-2019:1602-1 Security update for openssh | около 6 лет назад | ||
| openSUSE-SU-2019:0307-1 Security update for openssh | больше 6 лет назад | ||
| SUSE-SU-2019:1524-1 Security update for openssh | около 6 лет назад | ||
| SUSE-SU-2019:14030-1 Security update for openssh | больше 6 лет назад | ||
| SUSE-SU-2019:14016-1 Security update for openssh | больше 6 лет назад | ||
| SUSE-SU-2019:0941-1 Security update for openssh | больше 6 лет назад | ||
| SUSE-SU-2019:0496-1 Security update for openssh | больше 6 лет назад | ||
| ELSA-2019-3702 ELSA-2019-3702: openssh security, bug fix, and enhancement update (MODERATE) | почти 6 лет назад | ||
| openSUSE-SU-2019:0093-1 Security update for openssh | больше 6 лет назад | ||
| openSUSE-SU-2019:0091-1 Security update for openssh | больше 6 лет назад | ||
| SUSE-SU-2019:13931-1 Security update for openssh | больше 6 лет назад | ||
| SUSE-SU-2019:0132-1 Security update for openssh | больше 6 лет назад | ||
| SUSE-SU-2019:0126-1 Security update for openssh | больше 6 лет назад |
Уязвимостей на страницу