Vulnerabilities > SSH > Medium
| DATE | CVE | VULNERABILITY TITLE | RISK |
|---|---|---|---|
| 2023-12-18 | CVE-2023-48795 | Improper Validation of Integrity Check Value vulnerability in multiple products The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. network high complexity openbsd putty filezilla-project microsoft panic roumenpetrov winscp bitvise lancom-systems vandyke libssh net-ssh ssh2-project proftpd freebsd crates tera-term-project oryx-embedded crushftp netsarang paramiko redhat golang russh-project sftpgo-project erlang matez libssh2 asyncssh-project dropbear-ssh-project jadaptive ssh thorntech netgate connectbot apache tinyssh trilead kitty-project gentoo CWE-354 | 5.9 |
| 2021-03-15 | CVE-2021-27893 | Unspecified vulnerability in SSH Tectia Server SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation in nonstandard conditions. local ssh | 4.4 |
| 2021-03-15 | CVE-2021-27892 | Unspecified vulnerability in SSH Tectia Server SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation. | 4.6 |
| 2021-03-15 | CVE-2021-27891 | Unspecified vulnerability in SSH Tectia Client SSH Tectia Client and Server before 6.4.19 on Windows have weak key generation. | 6.5 |
| 2007-04-18 | CVE-2007-2063 | Permissions, Privileges, and Access Controls vulnerability in SSH Tectia Server 5.0/5.1.0/5.2.0 SSH Tectia Server for IBM z/OS before 5.4.0 uses insecure world-writable permissions for (1) the server pid file, which allows local users to cause arbitrary processes to be stopped, or (2) when _BPX_BATCH_UMASK is missing from the environment, creates HFS files with insecure permissions, which allows local users to read or modify these files and have other unknown impact. | 4.4 |
| 2006-10-24 | CVE-2006-5484 | Remote Security vulnerability in Tectia Client SSH Tectia Client/Server/Connector 5.1.0 and earlier, Manager 2.2.0 and earlier, and other products, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents Tectia from correctly verifying X.509 and other certificates that use PKCS #1, a similar issue to CVE-2006-4339. | 5.0 |
| 2005-07-05 | CVE-2005-2146 | Local Security vulnerability in SSH Tectia Server 4.3.1 SSH Tectia Server 4.3.1 and earlier, and SSH Secure Shell for Windows Servers, uses insecure permissions when generating the Secure Shell host identification key, which allows local users to access the key and spoof the server. | 4.6 |
| 2003-12-31 | CVE-2003-1119 | Denial-Of-Service vulnerability in SSH Secure Shell 3.1/3.2 SSH Secure Shell before 3.2.9 allows remote attackers to cause a denial of service via malformed BER/DER packets. | 5.0 |
| 2001-06-27 | CVE-2001-0364 | Denial of Service vulnerability in SSH Ssh2 2.4 SSH Communications Security sshd 2.4 for Windows allows remote attackers to create a denial of service via a large number of simultaneous connections. | 5.0 |
| 2001-06-27 | CVE-2001-0361 | Cryptographic Issues vulnerability in multiple products Implementations of SSH version 1.5, including (1) OpenSSH up to version 2.3.0, (2) AppGate, and (3) ssh-1 up to version 1.2.31, in certain configurations, allow a remote attacker to decrypt and/or alter traffic via a "Bleichenbacher attack" on PKCS#1 version 1.5. | 4.0 |