Lucene search
GoogleOSV:CVE-2017-15906HistoryOct 26, 2017 - 3:29 a.m.
CVE-2017-15906
2017-10-2603:29:00
Google
osv.dev
20
0.007 Low
EPSS
Percentile
79.7%
The process_open function in sftp-server.c in OpenSSH before 7.6 does not properly prevent write operations in readonly mode, which allows attackers to create zero-length files.
References
www.securityfocus.com/bid/101552
access.redhat.com/errata/RHSA-2018:0980
cert-portal.siemens.com/productcert/pdf/ssa-412672.pdf
github.com/openbsd/src/commit/a6981567e8e215acc1ef690c8dbb30f2d9b00a19
lists.debian.org/debian-lts-announce/2018/09/msg00010.html
security.gentoo.org/glsa/201801-05
security.netapp.com/advisory/ntap-20180423-0004/
www.openssh.com/txt/release-7.6
www.oracle.com/security-alerts/cpujan2020.html
Related
nessus
nessus
Slackware 13.0 / 13.1 / 13.37 / 14.0 / 14.1 / 14.2 / current : openssh (SSA:2018-067-01)
2018-03-09 00:00:00
GLSA-201801-05 : OpenSSH: Permission issue
2018-01-08 00:00:00
Fedora 26 : openssh (2017-4862a3bfb1)
2017-11-29 00:00:00
openvas
openvas
Fedora Update for openssh FEDORA-2017-4862a3bfb1
2017-12-04 00:00:00
OpenSSH 'sftp-server' Security Bypass Vulnerability - Windows
2017-10-27 00:00:00
Fedora Update for openssh FEDORA-2017-78f0991378
2017-12-14 00:00:00
ibm
ibm
prion
prion
Code injection
2017-10-26 03:29:00
amazon
amazon
Low: openssh
2018-05-10 17:51:00
Low: openssh
2018-06-20 19:56:00
aix
aix
Vulnerabilities in OpenSSH affect AIX.
2017-11-14 09:46:19
checkpoint_advisories
checkpoint_advisories
OpenSSH sftp-server.c Denial of Service (CVE-2017-15906)
2019-02-18 00:00:00
fedora
fedora
[SECURITY] Fedora 25 Update: openssh-7.4p1-5.fc25
2017-12-12 14:40:46
[SECURITY] Fedora 26 Update: openssh-7.5p1-4.fc26
2017-11-28 16:31:03
[SECURITY] Fedora 27 Update: openssh-7.6p1-2.fc27
2017-12-10 05:10:47
f5
f5
K89621551 : OpenSSH vulnerability CVE-2017-15906
2017-11-18 00:00:00
nvd
nvd
CVE-2017-15906
2017-10-26 03:29:00
oraclelinux
oraclelinux
openssh security, bug fix, and enhancement update
2018-04-16 00:00:00
gentoo
gentoo
OpenSSH: Permission issue
2018-01-07 00:00:00
redhat
redhat
(RHSA-2018:0980) Low: openssh security, bug fix, and enhancement update
2018-04-10 05:04:58
centos
centos
openssh, pam_ssh_agent_auth security update
2018-04-26 17:48:27
ubuntucve
ubuntucve
CVE-2017-15906
2017-10-25 00:00:00
alpinelinux
alpinelinux
CVE-2017-15906
2017-10-26 03:29:00
mageia
mageia
Updated openssh packages fix security vulnerability
2017-12-31 18:14:43
Updated openssh packages fix security vulnerability
2018-01-01 13:38:51
slackware
slackware
[slackware-security] openssh
2018-03-08 09:04:05
redhatcve
redhatcve
CVE-2017-15906
2017-10-26 13:49:08
symantec
symantec
SA163: OpenSSH Vulnerability October 2017
2018-01-30 08:00:00
debiancve
debiancve
CVE-2017-15906
2017-10-26 03:29:00
cvelist
cvelist
CVE-2017-15906
2017-10-26 00:00:00
cve
cve
CVE-2017-15906
2017-10-26 03:29:00
cloudfoundry
cloudfoundry
USN-3538-1: OpenSSH vulnerabilities | Cloud Foundry
2018-02-01 00:00:00
ubuntu
ubuntu
OpenSSH vulnerabilities
2018-01-22 00:00:00
osv
osv
openssh - security update
2018-09-10 00:00:00
debian
debian
[SECURITY] [DLA 1500-1] openssh security update
2018-09-10 08:44:17
photon
photon
Critical Photon OS Security Update - PHSA-2017-0005
2017-12-07 00:00:00
Critical Photon OS Security Update - PHSA-2017-0091
2017-12-08 00:00:00
ics
ics
Siemens SCALANCE X-200RNA Switch Devices
2022-12-19 12:00:00
oracle
oracle
Oracle Critical Patch Update Advisory - January 2020
2020-01-14 00:00:00