Vulnerabilities > Dropbear SSH Project > Dropbear SSH > High
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2022-10-12 | CVE-2021-36369 | Improper Authentication vulnerability in multiple products An issue was discovered in Dropbear through 2020.81. | 7.5 |
| 2021-02-25 | CVE-2020-36254 | Unspecified vulnerability in Dropbear SSH Project Dropbear SSH scp.c in Dropbear before 2020.79 mishandles the filename of . | 8.1 |
| 2019-03-21 | CVE-2017-2659 | Improper Authentication vulnerability in Dropbear SSH Project Dropbear SSH It was found that dropbear before version 2013.59 with GSSAPI leaks whether given username is valid or invalid. | 7.5 |
| 2017-05-19 | CVE-2017-9078 | Double Free vulnerability in multiple products The server in Dropbear before 2017.75 might allow post-authentication root remote code execution because of a double free in cleanup of TCP listeners when the -a option is enabled. | 8.8 |
| 2017-03-03 | CVE-2016-7408 | Improper Access Control vulnerability in Dropbear SSH Project Dropbear SSH The dbclient in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via a crafted (1) -m or (2) -c argument. | 8.8 |