[email protected]CVE-2019-6110

HistoryJan 31, 2019 - 6:29 p.m.

CVE-2019-6110

2019-01-3118:29:00

CWE-838

[email protected]

web.nvd.nist.gov

3995

In Wild

openssh

cve-2019-6110

vulnerability

server

client output

manipulation

6.8 Medium

CVSS3

Attack Vector

NETWORK

Attack Complexity

HIGH

Privileges Required

NONE

User Interaction

REQUIRED

Scope

UNCHANGED

Confidentiality Impact

HIGH

Integrity Impact

HIGH

Availability Impact

NONE

CVSS:3.1/AV:N/AC:H/PR:N/UI:R/S:U/C:H/I:H/A:N

6.2 Medium

AI Score

Confidence

High

4 Medium

CVSS2

Access Vector

NETWORK

Access Complexity

HIGH

Authentication

NONE

Confidentiality Impact

PARTIAL

Integrity Impact

PARTIAL

Availability Impact

NONE

AV:N/AC:H/Au:N/C:P/I:P/A:N

0.004 Low

EPSS

Percentile

74.3%

JSON

In OpenSSH 7.9, due to accepting and displaying arbitrary stderr output from the server, a malicious server (or Man-in-The-Middle attacker) can manipulate the client output, for example to use ANSI control codes to hide additional files being transferred.

CPENameOperatorVersion
openbsd:opensshopenbsd opensshle7.9
winscp:winscpwinscple5.13
netapp:element_softwarenetapp element softwareeq-
netapp:storage_automation_storenetapp storage automation storeeq-
netapp:ontap_select_deploynetapp ontap select deployeq-
siemens:scalance_x204rna_firmwaresiemens scalance x204rna firmwarelt3.2.7
siemens:scalance_x204rna_eec_firmwaresiemens scalance x204rna eec firmwarelt3.2.7

CPE	Name	Operator	Version
openbsd:openssh	openbsd openssh	le	7.9
winscp:winscp	winscp	le	5.13
netapp:element_software	netapp element software	eq	-
netapp:storage_automation_store	netapp storage automation store	eq	-
netapp:ontap_select_deploy	netapp ontap select deploy	eq	-
siemens:scalance_x204rna_firmware	siemens scalance x204rna firmware	lt	3.2.7
siemens:scalance_x204rna_eec_firmware	siemens scalance x204rna eec firmware	lt	3.2.7