A vulnerability was found in libssh's server-side state machine before versions 0.7.6 and 0.8.4. A malicious client could create channels without first performing authentication, resulting in unauthorized access.
CVSS:3.0/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:N
17/10/2018
by Libssh
3 months ago
by Netapp
5 months ago
by Oracle
2 years ago
by Netapp
3 years ago
by Netapp
5 years ago
by Debian
a month ago
by Redhat
a month ago
by Canonical
3 months ago