Lucene search
K
Database
Vendors
Products
Years
CVSS
Scanner
Agent Scanning
API Scanning
Manual Audit
Perimeter Scanner
Scanning
Projects
Email
Webhook
Plugins
Resources
Documents
Blog
Glossary
FAQ
Pricing
Contacts
About Us
Partners
Branding Guideline
ubuntucveUbuntu.comUB:CVE-2012-0814
HistoryJan 27, 2012 - 12:00 a.m.

CVE-2012-0814

2012-01-2700:00:00
ubuntu.com
ubuntu.com
16

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

68.3%

JSON

The auth_parse_options function in auth-options.c in sshd in OpenSSH before
5.7 provides debug messages containing authorized_keys command options,
which allows remote authenticated users to obtain potentially sensitive
information by reading these messages, as demonstrated by the shared user
account required by Gitolite. NOTE: this can cross privilege boundaries
because a user account may intentionally have no shell or filesystem
access, and therefore may have no supported way to read an authorized_keys
file in its own home directory.

Bugs

Related

prion 1
openvas 4
cve 1
f5 2
hackerone 1
debiancve 1
nessus 5
securityvulns 3
ibm 1
gentoo 1
rosalinux 1
prion
prion
Cross site scripting
2012-01-27 19:55:00
openvas
openvas
openssh-server Forced Command Handling Information Disclosure Vulnerability
2012-06-28 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:1045-1)
2021-06-09 00:00:00
SUSE: Security Advisory (SUSE-SU-2012:1042-1)
2021-06-09 00:00:00
cve
cve
CVE-2012-0814
2012-01-27 19:55:00
f5
f5
K14446 : OpenSSH vulnerability CVE-2012-0814
2013-10-08 00:00:00
SOL14446 - OpenSSH vulnerability CVE-2012-0814
2013-06-06 00:00:00
hackerone
hackerone
Greenhouse.io: openssh-server Forced Command Handling Information Disclosure Vulnerability on blog.greenhouse.io
2014-08-18 04:04:39
debiancve
debiancve
CVE-2012-0814
2012-01-27 19:55:00
nessus
nessus
SuSE 11.1 Security Update : openssh (SAT Patch Number 6672)
2013-01-25 00:00:00
Oracle Solaris Third-Party Patch Update : ssh (cve_2010_5107_denial_of)
2015-01-19 00:00:00
SuSE 10 Security Update : openssh (ZYPP Patch Number 8248)
2012-08-28 00:00:00
securityvulns
securityvulns
OpenSSH security vulnerabilities
2013-03-24 00:00:00
[ MDVSA-2013:022 ] openssh
2013-03-24 00:00:00
ESA-2014-016: EMC VPLEX Multiple Vulnerabilities
2014-03-31 00:00:00
ibm
ibm
Security Bulletin: IBM System x and Flex Systems OpenSSH Vulnerabilities (CVE-2012-0814, CVE-2008-5161)
2019-01-30 08:05:01
gentoo
gentoo
OpenSSH: Multiple vulnerabilities
2014-05-11 00:00:00
rosalinux
rosalinux
Advisory ROSA-SA-2021-1938
2021-07-02 17:38:20

3.5 Low

CVSS2

Access Vector

NETWORK

Access Complexity

MEDIUM

Authentication

SINGLE

Confidentiality Impact

PARTIAL

Integrity Impact

NONE

Availability Impact

NONE

AV:N/AC:M/Au:S/C:P/I:N/A:N

0.003 Low

EPSS

Percentile

68.3%

JSON
Related for UB:CVE-2012-0814
prion1openvas4cve1f52hackerone1debiancve1nessus5securityvulns3ibm1gentoo1rosalinux1