Vulnerabilities > SSH > Tectia Server > Medium
DATE | CVE | VULNERABILITY TITLE | RISK |
---|---|---|---|
2021-03-15 | CVE-2021-27893 | Unspecified vulnerability in SSH Tectia Server SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation in nonstandard conditions. local ssh | 4.4 |
2021-03-15 | CVE-2021-27892 | Unspecified vulnerability in SSH Tectia Server SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation. | 4.6 |
2021-03-15 | CVE-2021-27891 | Unspecified vulnerability in SSH Tectia Client SSH Tectia Client and Server before 6.4.19 on Windows have weak key generation. | 6.5 |
2007-04-18 | CVE-2007-2063 | Permissions, Privileges, and Access Controls vulnerability in SSH Tectia Server 5.0/5.1.0/5.2.0 SSH Tectia Server for IBM z/OS before 5.4.0 uses insecure world-writable permissions for (1) the server pid file, which allows local users to cause arbitrary processes to be stopped, or (2) when _BPX_BATCH_UMASK is missing from the environment, creates HFS files with insecure permissions, which allows local users to read or modify these files and have other unknown impact. | 4.4 |
2006-10-24 | CVE-2006-5484 | Remote Security vulnerability in Tectia Client SSH Tectia Client/Server/Connector 5.1.0 and earlier, Manager 2.2.0 and earlier, and other products, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents Tectia from correctly verifying X.509 and other certificates that use PKCS #1, a similar issue to CVE-2006-4339. | 5.0 |
2005-07-05 | CVE-2005-2146 | Local Security vulnerability in SSH Tectia Server 4.3.1 SSH Tectia Server 4.3.1 and earlier, and SSH Secure Shell for Windows Servers, uses insecure permissions when generating the Secure Shell host identification key, which allows local users to access the key and spoof the server. | 4.6 |