📦

package_ssh

Vendor: golang

Login to add this product to WatchStack
Actively Exploited 0 CISA KEV List
PoC / Exploits 1 Code Available
Total RCEs 0 Remote Access
Total CVEs 1 Total Indexed
Avg. EPSS 20.89% Exploit Prob.
Latest CVE CVE-2020-9283 Feb 20

Security Vulnerability Index

Page 1 / 1
7.5 CVSS
CVE-2020-9283
Exploit Found

golang.org/x/crypto before v0.0.0-20200220183623-bac4c82f6975 for Go allows a panic during signature verification in the golang.org/x/crypto/ssh package. A client can attack an SSH server that accepts public keys. Also, a server can attack any SSH client.

EPSS: 20.89%