CVE-2018-20685

5.3MEDIUM

Key Information:

Vendor: OpenBSD
Status: Openssh; Winscp
Vendor: CVE Published:; 10 January 2019

Summary

In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.

References

https://www.debian.org/security/2019/dsa-4387

vendor-advisory

https://usn.ubuntu.com/3885-1/

vendor-advisory

https://github.com/openssh/openssh-portable/commit/6010c0...

CVSS V3.1

Score:

5.3

Severity:

MEDIUM

Confidentiality:

None

Integrity:

High

Availability:

None

Attack Vector:

Network

Attack Complexity:

High

Privileges Required:

None

User Interaction:

Required

Scope:

Unchanged

Timeline

Vulnerability published
Jan 10, 2019
Vulnerability Reserved
Jan 10, 2019