| CVE-2023-48795 |
medium |
5.9 |
5.9 |
|
|
|
3y ago |
The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from… |
| CVE-2026-44405 |
low |
3.4 |
3.4 |
|
|
|
29d ago |
Paramiko rsakey.py allows the SHA-1 algorithm |
| CVE-2018-7750 |
unknown |
— |
1.0 |
|
|
|
8y ago |
transport.py in the SSH server implementation of Paramiko before 1.17.6, 1.18.x before 1.18.5, 2.0.x before 2.0.8, 2.1.x before 2.1.5, 2.2.x before 2.2.3, 2.3.x before 2.3.2, and 2.4.x before 2.4.1 d… |
| CVE-2008-0299 |
unknown |
— |
— |
|
|
|
4y ago |
common.py in Paramiko 1.7.1 and earlier, when using threads or forked processes, does not properly use RandomPool, which allows one session to obtain sensitive information from another session by pre… |
| CVE-2022-24302 |
unknown |
— |
— |
|
|
|
4y ago |
In Paramiko before 2.10.1, a race condition (between creation and chmod) in the write_private_key_file function could allow unauthorized information disclosure. |
| CVE-2018-1000805 |
unknown |
— |
— |
|
|
|
8y ago |
Paramiko version 2.4.1, 2.3.2, 2.2.3, 2.1.5, 2.0.8, 1.18.5, 1.17.6 contains a Incorrect Access Control vulnerability in SSH server that can result in RCE. This attack appear to be exploitable via net… |
