Lucene search
Veracode Vulnerability DatabaseVERACODE:26647HistorySep 07, 2020 - 3:09 a.m.
Information Disclosure
2020-09-0703:09:18
Veracode Vulnerability Database
sca.analysiscenter.veracode.com
6
0.003 Low
EPSS
Percentile
71.7%
putty is vulnerable to information disclosure. An Observable Discrepancy results in an information disclosure in the algorithm negotiation.
| CPE | Name | Operator | Version |
|---|---|---|---|
| putty:3.12 | eq | 0.73-r2 | |
| putty:3.10 | eq | 0.73-r2 | |
| putty:3.11 | eq | 0.73-r2 | |
| putty:3.11 | eq | 0.73-r0 | |
| putty | eq | 0.73-r0 | |
| putty:edge | eq | 0.73-r2 | |
| putty:3.12 | eq | 0.73-r2 | |
| putty:3.10 | eq | 0.73-r2 | |
| putty:3.11 | eq | 0.73-r2 | |
| putty:3.11 | eq | 0.73-r0 |
References
lists.fedoraproject.org/archives/list/[email protected]/message/26TACCSQYYCPWAJYNAUIXJGZ5RGORJZV/
lists.fedoraproject.org/archives/list/[email protected]/message/JPV4A77EDCT4BTFO5BE26ZH72BG4E5IJ/
lists.tartarus.org/pipermail/putty-announce/
security.netapp.com/advisory/ntap-20200717-0003/
www.chiark.greenend.org.uk/~sgtatham/putty/changes.html
www.fzi.de/en/news/news/detail-en/artikel/fsa-2020-2-ausnutzung-eines-informationslecks-fuer-gezielte-mitm-angriffe-auf-ssh-clients/
Related
debiancve
debiancve
CVE-2020-14002
2020-06-29 18:15:11
redhatcve
redhatcve
CVE-2020-14002
2022-05-21 00:04:45
openvas
openvas
Mageia: Security Advisory (MGASA-2021-0380)
2022-01-28 00:00:00
Mageia: Security Advisory (MGASA-2020-0358)
2022-01-28 00:00:00
Fedora: Security Advisory for putty (FEDORA-2020-f4dba093f1)
2020-07-12 00:00:00
nvd
nvd
CVE-2020-14002
2020-06-29 18:15:11
freebsd
freebsd
PuTTY -- Release 0.74 fixes two security vulnerabilities
2020-06-27 00:00:00
mageia
mageia
Updated filezilla packages fix security vulnerability
2021-07-27 23:21:53
Updated putty package fixes security vulnerability
2020-09-02 11:01:16
osv
osv
CVE-2020-14002
2020-06-29 18:15:11
putty - security update
2024-04-25 00:00:00
fedora
fedora
[SECURITY] Fedora 31 Update: putty-0.74-1.fc31
2020-07-09 01:07:29
[SECURITY] Fedora 32 Update: putty-0.74-1.fc32
2020-07-09 01:06:32
cvelist
cvelist
CVE-2020-14002
2020-06-29 00:00:00
cve
cve
CVE-2020-14002
2020-06-29 18:15:11
nessus
nessus
FreeBSD : PuTTY -- Release 0.74 fixes two security vulnerabilities (6190c0cd-b945-11ea-9401-2dcf562daa69)
2020-06-29 00:00:00
Fedora 31 : putty (2020-f4dba093f1)
2020-07-09 00:00:00
Fedora 32 : putty (2020-35442ce9b7)
2020-07-09 00:00:00
alpinelinux
alpinelinux
CVE-2020-14002
2020-06-29 18:15:11
ubuntucve
ubuntucve
CVE-2020-14002
2020-06-29 00:00:00
prion
prion
Design/Logic Flaw
2020-06-29 18:15:00
debian
debian
[SECURITY] [DLA 3794-1] putty security update
2024-04-25 20:47:44