CVE-2024-31497
- EPSS 14.7%
- Published 15.04.2024 20:15:11
- Last modified 27.03.2025 15:15:51
In PuTTY 0.68 through 0.80 before 0.81, biased ECDSA nonce generation allows an attacker to recover a user's NIST P-521 secret key via a quick attack in approximately 60 signatures. This is especially important in a scenario where an adversary is abl...
CVE-2023-48795
- EPSS 64.06%
- Published 18.12.2023 16:15:10
- Last modified 29.09.2025 21:56:10
The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client a...
CVE-2016-15003
- EPSS 0.65%
- Published 18.07.2022 09:15:08
- Last modified 21.11.2024 02:45:28
A vulnerability has been found in FileZilla Client 3.17.0.0 and classified as problematic. This vulnerability affects unknown code of the file C:\Program Files\FileZilla FTP Client\uninstall.exe of the component Installer. The manipulation leads to u...
CVE-2022-29620
- EPSS 0.47%
- Published 07.06.2022 21:15:14
- Last modified 21.11.2024 06:59:26
FileZilla v3.59.0 allows attackers to obtain cleartext passwords of connected SSH or FTP servers via a memory dump.- NOTE: the vendor does not consider this a vulnerability
CVE-2019-5429
- EPSS 0.66%
- Published 29.04.2019 15:29:02
- Last modified 21.11.2024 04:44:55
Untrusted search path in FileZilla before 3.41.0-rc1 allows an attacker to gain privileges via a malicious 'fzsftp' binary in the user's home directory.