Lucene search
K

7 matches found

Debian
Debian
added 2024/04/25 8:47 p.m.66 views

[SECURITY] [DLA 3794-1] putty security update

------------------------------------------------------------------------- Debian LTS Advisory DLA-3794-1 [email protected] https://www.debian.org/lts/security/ Bastien Roucariès April 25, 2024 https://wiki.debian.org/LTS -...

8.1CVSS6.9AI score0.93305EPSS
Exploits4
Debian
Debian
added 2023/12/24 10:28 a.m.85 views

[SECURITY] [DSA 5588-1] putty security update

------------------------------------------------------------------------- Debian Security Advisory DSA-5588-1 [email protected] https://www.debian.org/security/ Salvatore Bonaccorso December 24, 2023 https://www.debian.org/security/faq -...

8.1CVSS6.7AI score0.93305EPSS
Exploits4
Circl
Circl
added 2021/07/10 12:15 a.m.6 views

CVE-2021-36367

creationtimestamp| type| source ---|---|--- 2021-07-10 00:15:11+00:00| seen| https://t.me/cibsecurity/26046...

8.1CVSS7.8AI score0.01106EPSS
Exploits0References1
UbuntuCve
UbuntuCve
added 2021/07/09 9:15 p.m.30 views

CVE-2021-36367

PuTTY through 0.75 proceeds with establishing an SSH session even if it has never sent a substantive authentication response. This makes it easier for an attacker-controlled SSH server to present a later spoofed authentication prompt that the attacker can use to capture credential data, and use...

8.1CVSS7.2AI score0.01106EPSS
Exploits0References3
CVE
CVE
added 2021/07/09 12:0 a.m.180 views

CVE-2021-36367

PuTTY prior to 0.76 proceeds with an SSH session even if no substantive authentication has been sent, enabling a remote, attacker‑controlled SSH server to later present spoofed authentication prompts and capture credentials. Upstream fixes exist in 0.76+; Debian/DLA advisories note patches in new...

8.1CVSS7.9AI score0.01106EPSS
Exploits0References4Affected Software1
Cvelist
Cvelist
added 2021/07/09 12:0 a.m.29 views

CVE-2021-36367

PuTTY through 0.75 proceeds with establishing an SSH session even if it has never sent a substantive authentication response. This makes it easier for an attacker-controlled SSH server to present a later spoofed authentication prompt that the attacker can use to capture credential data, and use...

8.2AI score0.01106EPSS
Exploits0References4
AlpineLinux
AlpineLinux
added 2021/07/09 12:0 a.m.31 views

CVE-2021-36367

PuTTY through 0.75 proceeds with establishing an SSH session even if it has never sent a substantive authentication response. This makes it easier for an attacker-controlled SSH server to present a later spoofed authentication prompt that the attacker can use to capture credential data, and use...

8.1CVSS6.7AI score0.01106EPSS
Exploits0
Rows per page
Query Builder