Security Advisory

CVE-2019-1000018

CVE vulnerability detail — eXtreme Datacenter Security Operations

Published 2019-02-04 21:00:00

Last updated 2025-03-19 19:45:40

Assigner mitre

State PUBLISHED

Description

rssh version 2.3.4 contains a CWE-77: Improper Neutralization of Special Elements used in a Command (Command Injection) vulnerability in allowscp permission that can result in Local command execution. This attack appear to be exploitable via An authorized SSH user with the allowscp permission.

← Browse all CVEs View on cve.org ↗