CVE-2024-31497
- EPSS 14.7%
- Veröffentlicht 15.04.2024 20:15:11
- Zuletzt bearbeitet 27.03.2025 15:15:51
In PuTTY 0.68 through 0.80 before 0.81, biased ECDSA nonce generation allows an attacker to recover a user's NIST P-521 secret key via a quick attack in approximately 60 signatures. This is especially important in a scenario where an adversary is abl...
CVE-2023-48795
- EPSS 64.06%
- Veröffentlicht 18.12.2023 16:15:10
- Zuletzt bearbeitet 29.09.2025 21:56:10
The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client a...
CVE-2016-15003
- EPSS 0.65%
- Veröffentlicht 18.07.2022 09:15:08
- Zuletzt bearbeitet 21.11.2024 02:45:28
A vulnerability has been found in FileZilla Client 3.17.0.0 and classified as problematic. This vulnerability affects unknown code of the file C:\Program Files\FileZilla FTP Client\uninstall.exe of the component Installer. The manipulation leads to u...
CVE-2022-29620
- EPSS 0.47%
- Veröffentlicht 07.06.2022 21:15:14
- Zuletzt bearbeitet 21.11.2024 06:59:26
FileZilla v3.59.0 allows attackers to obtain cleartext passwords of connected SSH or FTP servers via a memory dump.- NOTE: the vendor does not consider this a vulnerability
CVE-2019-5429
- EPSS 0.66%
- Veröffentlicht 29.04.2019 15:29:02
- Zuletzt bearbeitet 21.11.2024 04:44:55
Untrusted search path in FileZilla before 3.41.0-rc1 allows an attacker to gain privileges via a malicious 'fzsftp' binary in the user's home directory.