Lucene search

CVE-2018-20685

🗓️ 10 Jan 2019 00:00:00Reported by AttackerKBType

In OpenSSH 7.9, scp client allows servers to bypass access restrictions, modifying client's directory permissions

AI Insights are available for you today

Leverage the power of AI to quickly understand vulnerabilities, impacts, and exploitability

Reporter	Title	Published	Views	Family All 138
Fedora	[SECURITY] Fedora 28 Update: openssh-7.8p1-4.fc28	22 Jan 201901:35	–	fedora
Fedora	[SECURITY] Fedora 29 Update: openssh-7.9p1-3.fc29	16 Jan 201902:21	–	fedora
Tenable Nessus	Solaris 10 (x86) : 148105-29	16 Apr 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP3 : openssh (EulerOS-SA-2019-1097)	26 Mar 201900:00	–	nessus
Tenable Nessus	EulerOS 2.0 SP2 : openssh (EulerOS-SA-2019-2483)	4 Dec 201900:00	–	nessus
Tenable Nessus	Photon OS 2.0: Openssh PHSA-2019-2.0-0139	22 Jul 202400:00	–	nessus
Tenable Nessus	Siemens SCALANCE X-200RNA Switch Devices Incorrect Authorization (CVE-2018-20685)	23 Feb 202300:00	–	nessus
Tenable Nessus	EulerOS Virtualization 2.5.4 : openssh (EulerOS-SA-2019-1235)	4 Apr 201900:00	–	nessus
Tenable Nessus	NewStart CGSL MAIN 4.06 : openssh-latest Vulnerability (NS-SA-2019-0094)	12 Aug 201900:00	–	nessus
Tenable Nessus	EulerOS Virtualization for ARM 64 3.0.1.0 : openssh (EulerOS-SA-2019-1399)	14 May 201900:00	–	nessus

Source	Link
cve	www.cve.mitre.org/cgi-bin/cvename.cgi
securityfocus	www.securityfocus.com/bid/106531
debian	www.debian.org/security/2019/dsa-4387
usn	www.usn.ubuntu.com/3885-1
security	www.security.netapp.com/advisory/ntap-20190215-0001
security	www.security.gentoo.org/glsa/201903-16
lists	www.lists.debian.org/debian-lts-announce/2019/03/msg00030.html
access	www.access.redhat.com/errata/RHSA-2019:3702
security	www.security.gentoo.org/glsa/202007-53
github	www.github.com/openssh/openssh-portable/commit/6010c0303a422a9c5fa8860c061bf7105eb7f8b2

Transform Your Security Services

Elevate your offerings with Vulners' advanced Vulnerability Intelligence. Contact us for a demo and discover the difference comprehensive, actionable intelligence can make in your security strategy.

Book a live demo

10 Jan 2019 00:00Current

6.1Medium risk

Vulners AI Score6.1

CVSS22.6

CVSS35.3

EPSS0.03469