CVE-2017-18443

cPanel before 64.0.21 allows demo and suspended accounts to use SSH port forwarding SEC-247...

CVE-2020-10888

This vulnerability allows remote attackers to bypass authentication on affected installations of TP-Link Archer A7 Firmware Ver: 190726 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of SSH port forwarding requests during...

CVE-2025-54546

CVE-2025-54546 affects Arista DANZ Monitoring Fabric (and related Arista products) where a restricted user could use SSH port forwarding to access host-internal services. The advisory confirms this vulnerability and lists affected platforms (DMF, CCF, CVA, MCD) and affected DMF versions (e.g., DM...

EUVD-2017-9559

Malware in sbrugna...

EUVD-2020-3294

Malware in sbrugna...

CVE-2019-13069

extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an additional user account, and then use SSH and port forwarding to reach a 127.0.0.1 service...

CVE-2020-25619

An issue was discovered in SolarWinds N-Central 12.3.0.670. The SSH component does not restrict the Communication Channel to Intended Endpoints. An attacker can leverage an SSH feature port forwarding with a temporary key pair to access network services on the 127.0.0.1 interface, even though thi...

Linux: SSH AllowTcpForwarding

SSH port forwarding is a mechanism in SSH for tunneling application ports from the client to the server, or servers to clients. It can be used for adding encryption to legacy applications, going through firewalls, and some system administrators and IT professionals use it for opening backdoors in...

TP-Link Archer A7 AC1750 Authorization Issues Vulnerability

The TP-Link Archer A7 AC1750 is a wireless router from China P&L TP-Link. An authorization issue vulnerability exists in the TP-Link Archer A7 using firmware version 190726 AC1750, which stems from a lack of proper authentication before establishing SSH port forwarding rules. An attacker could us...

(Pwn2Own) TP-Link Archer A7 SSH Port Forwarding Authentication Bypass Vulnerability

This vulnerability allows remote attackers to bypass authentication on affected installations of TP-Link Archer A7 AC1750 routers. Authentication is not required to exploit this vulnerability. The specific flaw exists within the handling of SSH port forwarding requests during initial setup. The...

CVE-2019-13069

extenua SilverSHielD 6.x fails to secure its ProgramData folder, leading to a Local Privilege Escalation to SYSTEM. The attacker must replace SilverShield.config.sqlite with a version containing an additional user account, and then use SSH and port forwarding to reach a 127.0.0.1 service...

CVE-2017-18443

cPanel before 64.0.21 allows demo and suspended accounts to use SSH port forwarding SEC-247...

Code injection

cPanel before 64.0.21 allows demo and suspended accounts to use SSH port forwarding SEC-247...

CVE-2017-18443

cPanel before 64.0.21 allows demo and suspended accounts to use SSH port forwarding SEC-247...

idb - iOS App Security Assessment Tool

idb is a tool to simplify some common tasks for iOS app security assessments and research. Please see the Documentation for a more detailed summary of each function. Features Assessment Setup SSH port forwarding Installation of helper utilities App Information Bundle information Registered URL...

CVE-2012-4078

The Baseboard Management Controller BMC in Cisco Unified Computing System UCS does not properly handle SSH escape sequences, which allows remote authenticated users to bypass an unspecified authentication step via SSH port forwarding, aka Bug ID CSCtg17656...