Apache Mina Sshd
By the Year
In 2024 there have been 0 vulnerabilities in Apache Mina Sshd . Mina Sshd did not have any published security vulnerabilities last year.
Year | Vulnerabilities | Average Score |
---|---|---|
2024 | 0 | 0.00 |
2023 | 0 | 0.00 |
2022 | 0 | 0.00 |
2021 | 0 | 0.00 |
2020 | 0 | 0.00 |
2019 | 1 | 5.90 |
2018 | 0 | 0.00 |
It may take a day or so for new Mina Sshd vulnerabilities to show up in the stats or in the list of recent security vulnerabilties. Additionally vulnerabilities may be tagged under a different product or component name.
Recent Apache Mina Sshd Security Vulnerabilities
An issue was discovered in OpenSSH 7.9
CVE-2019-6111
5.9 - Medium
- January 31, 2019
An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented). A malicious scp server (or Man-in-The-Middle attacker) can overwrite arbitrary files in the scp client target directory. If recursive operation (-r) is performed, the server can manipulate subdirectories as well (for example, to overwrite the .ssh/authorized_keys file).
Directory traversal
Stay on top of Security Vulnerabilities
Want an email whenever new vulnerabilities are published for FreeBSD or by Apache? Click the Watch button to subscribe.