CVE-2019-6111

OpenSSH SCP client vulnerability CVE-2019-6111: in OpenSSH 7.9, the SCP client does not properly validate the object name returned by the server, allowing a malicious SCP server or MITM to overwrite arbitrary files in the client target directory. If recursive transfers (-r) are used, subdirectori...

CVE-2024-41909

CVE-2024-41909 references a Terrapin-like downgrade risk in SSH streams similar to CVE-2023-48795, where an attacker intercepting traffic could cause packet drops that lead to downgraded or disabled security features on both client and server ends. Technical details in the connected documents sho...

CVE-2026-48827

This CVE (CVE-2026-48827) affects Apache MINA SSHD when used as the sshd-git bundle. The vulnerability is a path traversal caused by missing path validation in git-upload-pack, git-receive-pack, and other git operations, allowing SSH-authenticated users to access repositories outside the configur...