Dropbear 2011.54 - 2018.76 Information Disclosure Vulnerability

Dropbear is prone to an information disclosure vulnerability. SPDX-FileCopyrightText: 2022 Greenbone AG Some text descriptions might be excerpted from a referenced sources, and are Copyright C by the respective right holders. SPDX-License-Identifier: GPL-2.0-only CPE =...

CVE-2019-12953

Dropbear 2011.54 through 2018.76 has an inconsistent failure delay that may lead to revealing valid usernames, a different issue than CVE-2018-15599...

PT-2020-9351 · Dropbear +1 · Dropbear +1

Name of the Vulnerable Software and Affected Versions: Dropbear versions 2011.54 through 2018.76 Description: The issue is related to an inconsistent failure delay that may lead to revealing valid usernames. Recommendations: For versions 2011.54 through 2018.76, update to a version that addresses...

Perth Dropbear Information Disclosure Vulnerability

Perth Dropbear is a lightweight SSH server/client software from the University of Perth, Australia that is primarily used in embedded devices. A security vulnerability exists in Dropbear versions 2011.54 through 2018.76 that stems from an inconsistent failure delay time, which could result in the...

CVE-2018-15599

The recvmsguserauthrequest function in svr-auth.c in Dropbear through 2018.76 is prone to a user enumeration vulnerability because username validity affects how fields in SSHMSGUSERAUTH messages are handled, a similar issue to CVE-2018-15473 in an unrelated codebase...