2019-01-10 22:29:00 2019-10-03 02:03:26

In OpenSSH 7.9, scp.c in the scp client allows remote SSH servers to bypass intended access restrictions via the filename of . or an empty filename. The impact is modifying the permissions of the target directory on the client side.

Vector

NETWORK

Complexity

HIGH

Authentication

NONE

Confidentiality

NONE

Integrity

PARTIAL

Availability

NONE