Lucene search
K

4 matches found

RedhatCVE
RedhatCVE
added 2025/05/22 5:25 p.m.7 views

CVE-2020-11939

In nDPI through 3.2 Stable, the SSH protocol dissector has multiple KEXINIT integer overflows that result in a controlled remote heap overflow in concathashstring in ssh.c. Due to the granular nature of the overflow primitive and the ability to control both the contents and layout of the nDPI...

9.8CVSS9.6AI score0.03302EPSS
Exploits1References1
SUSE CVE
SUSE CVE
added 2023/02/15 4:11 a.m.3 views

SUSE CVE-2019-13115

In libssh2 before 1.9.0, kexmethoddiffiehellmangroupexchangesha256keyexchange in kex.c has an integer overflow that could lead to an out-of-bounds read in the way packets are read from the server. A remote attacker who compromises a SSH server may be able to disclose sensitive information or caus...

8.1CVSS7.4AI score0.11659EPSS
Exploits1References3
OSV
OSV
added 2020/04/23 3:15 p.m.4 views

DEBIAN-CVE-2020-11939

In nDPI through 3.2 Stable, the SSH protocol dissector has multiple KEXINIT integer overflows that result in a controlled remote heap overflow in concathashstring in ssh.c. Due to the granular nature of the overflow primitive and the ability to control both the contents and layout of the nDPI...

9.8CVSS8.7AI score0.03302EPSS
Exploits1References1
ATTACKERKB
ATTACKERKB
added 2019/07/16 6:15 p.m.2 views

CVE-2019-13115

In libssh2 before 1.9.0, kexmethoddiffiehellmangroupexchangesha256keyexchange in kex.c has an integer overflow that could lead to an out-of-bounds read in the way packets are read from the server. A remote attacker who compromises a SSH server may be able to disclose sensitive information or caus...

9.3CVSS5.6AI score0.11659EPSS
Exploits1References25
Rows per page
Query Builder