7 matches found
apache-mina-sshd: information exposure in SFTP server implementations
A flaw was found in Apache Mina SSHD that could be exploited on certain SFTP servers implemented using the Apache Mina RootedFileSystem. This issue could permit authenticated users to view information outside of their permissions scope...
apache-mina-sshd: information exposure in SFTP server implementations
A flaw was found in Apache Mina SSHD that could be exploited on certain SFTP servers implemented using the Apache Mina RootedFileSystem. This issue could permit authenticated users to view information outside of their permissions scope...
apache-mina-sshd: information exposure in SFTP server implementations
A flaw was found in Apache Mina SSHD that could be exploited on certain SFTP servers implemented using the Apache Mina RootedFileSystem. This issue could permit authenticated users to view information outside of their permissions scope...
apache-mina-sshd: information exposure in SFTP server implementations
A flaw was found in Apache Mina SSHD that could be exploited on certain SFTP servers implemented using the Apache Mina RootedFileSystem. This issue could permit authenticated users to view information outside of their permissions scope...
apache-mina-sshd: information exposure in SFTP server implementations
A flaw was found in Apache Mina SSHD that could be exploited on certain SFTP servers implemented using the Apache Mina RootedFileSystem. This issue could permit authenticated users to view information outside of their permissions scope...
apache-mina-sshd: information exposure in SFTP server implementations
A flaw was found in Apache Mina SSHD that could be exploited on certain SFTP servers implemented using the Apache Mina RootedFileSystem. This issue could permit authenticated users to view information outside of their permissions scope...
Information Disclosure
org.apache.sshd:sshd-common and org.apache.sshd:sshd-sftp are vulnerable to Information Disclosure. SFTP servers using the library with a RootedFileSystem may reveal the existence of items outside the rooted tree through parent navigation or symlinks, resulting in disclosure of sensitive...