2018-10-17 12:00:00
redhat
PUBLISHED
A vulnerability was found in libsshs server-side state machine before versions 0.7.6 and 0.8.4. A malicious client could create channels without first performing authentication, resulting in unauthorized access.