M12-1 Firmware Security Vulnerabilities and Issues — M12-1 Firmware CVE List

Lucene search

FujitsuM12-1 Firmware

3 matches found

CVE•added 2019/01/31 6:29 p.m.•13319 views

CVE-2019-6111

An issue was discovered in OpenSSH 7.9. Due to the scp implementation being derived from 1983 rcp, the server chooses which files/directories are sent to the client. However, the scp client only performs cursory validation of the object name returned (only directory traversal attacks are prevented)...

5.9CVSS6.3AI score0.67755EPSS

CVE•added 2019/01/10 9:29 p.m.•5455 views

CVE-2018-20685

In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.

5.3CVSS6.3AI score0.02208EPSS

CVE•added 2018/07/10 9:29 p.m.•273 views

CVE-2018-3693

Systems with microprocessors utilizing speculative execution and branch prediction may allow unauthorized disclosure of information to an attacker with local user access via a speculative buffer overflow and side-channel analysis.

5.6CVSS6.3AI score0.01192EPSS