mirror of
https://github.com/CVEProject/cvelist.git
synced 2025-07-30 18:04:30 +00:00
143 lines
4.6 KiB
JSON
143 lines
4.6 KiB
JSON
{
|
|
"CVE_data_meta" : {
|
|
"ASSIGNER" : "cve@mitre.org",
|
|
"ID" : "CVE-2018-7750",
|
|
"STATE" : "PUBLIC"
|
|
},
|
|
"affects" : {
|
|
"vendor" : {
|
|
"vendor_data" : [
|
|
{
|
|
"product" : {
|
|
"product_data" : [
|
|
{
|
|
"product_name" : "n/a",
|
|
"version" : {
|
|
"version_data" : [
|
|
{
|
|
"version_value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
}
|
|
]
|
|
},
|
|
"vendor_name" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
},
|
|
"data_format" : "MITRE",
|
|
"data_type" : "CVE",
|
|
"data_version" : "4.0",
|
|
"description" : {
|
|
"description_data" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 does not properly check whether authentication is completed before processing other requests, as demonstrated by channel-open. A customized SSH client can simply skip the authentication step."
|
|
}
|
|
]
|
|
},
|
|
"problemtype" : {
|
|
"problemtype_data" : [
|
|
{
|
|
"description" : [
|
|
{
|
|
"lang" : "eng",
|
|
"value" : "n/a"
|
|
}
|
|
]
|
|
}
|
|
]
|
|
},
|
|
"references" : {
|
|
"reference_data" : [
|
|
{
|
|
"name" : "45712",
|
|
"refsource" : "EXPLOIT-DB",
|
|
"url" : "https://www.exploit-db.com/exploits/45712/"
|
|
},
|
|
{
|
|
"name" : "[debian-lts-announce] 20181027 [SECURITY] [DLA 1556-1] paramiko security update",
|
|
"refsource" : "MLIST",
|
|
"url" : "https://lists.debian.org/debian-lts-announce/2018/10/msg00018.html"
|
|
},
|
|
{
|
|
"name" : "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://github.com/paramiko/paramiko/blob/master/sites/www/changelog.rst"
|
|
},
|
|
{
|
|
"name" : "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://github.com/paramiko/paramiko/commit/fa29bd8446c8eab237f5187d28787727b4610516"
|
|
},
|
|
{
|
|
"name" : "https://github.com/paramiko/paramiko/issues/1175",
|
|
"refsource" : "CONFIRM",
|
|
"url" : "https://github.com/paramiko/paramiko/issues/1175"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:0591",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:0591"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:0646",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:0646"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:1124",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:1124"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:1125",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:1125"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:1213",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:1213"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:1274",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:1274"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:1328",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:1328"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:1525",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:1525"
|
|
},
|
|
{
|
|
"name" : "RHSA-2018:1972",
|
|
"refsource" : "REDHAT",
|
|
"url" : "https://access.redhat.com/errata/RHSA-2018:1972"
|
|
},
|
|
{
|
|
"name" : "USN-3603-2",
|
|
"refsource" : "UBUNTU",
|
|
"url" : "https://usn.ubuntu.com/3603-2/"
|
|
},
|
|
{
|
|
"name" : "USN-3603-1",
|
|
"refsource" : "UBUNTU",
|
|
"url" : "https://usn.ubuntu.com/3603-1/"
|
|
},
|
|
{
|
|
"name" : "103713",
|
|
"refsource" : "BID",
|
|
"url" : "http://www.securityfocus.com/bid/103713"
|
|
}
|
|
]
|
|
}
|
|
}
|