3 matches found
CVE-2023-48795
CVE-2023-48795 is referenced across several connected advisories, detailing affected packages and required upgrades. Astra Linux/CBL-Mariner entries note: podman (<5.6.1-2) needs upgrade, erlang (<25.2-1), libssh2 (<1.11.1-1), libssh (<0.10.6-1), terraform (<1.3.2-25), kubevirt (&l...
CVE-2024-31497
PuTTY versions 0.68–0.80 (before 0.81) are vulnerable to a biased ECDSA nonce issue that can enable an attacker to recover a user’s NIST P-521 private key after observing signatures. The CVE is discussed in multiple advisories and vendor notices (Debian LTS advisory DLA-3839-1, Fedora package upd...
CVE-2019-5429
CVE-2019-5429 affects FileZilla and is caused by an untrusted search path that allows privilege escalation via a malicious ‘fzsftp’ binary placed in a user’s home directory. The vulnerability impacts FileZilla versions before 3.41.0-rc1 and is described in multiple sources (e.g., Debian DLA-3026-...