| Max CVSS | 10.0 | Min CVSS | 2.1 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2016-7408 | 6.5 |
The dbclient in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via a crafted (1) -m or (2) -c argument.
|
04-03-2017 - 23:10 | 03-03-2017 - 16:59 | |
| CVE-2016-7409 | 2.1 |
The dbclient and server in Dropbear SSH before 2016.74, when compiled with DEBUG_TRACE, allows local users to read process memory via the -v argument, related to a failed remote ident.
|
04-03-2017 - 23:02 | 03-03-2017 - 16:59 | |
| CVE-2016-7406 | 10.0 |
Format string vulnerability in Dropbear SSH before 2016.74 allows remote attackers to execute arbitrary code via format string specifiers in the (1) username or (2) host argument.
|
04-03-2017 - 23:00 | 03-03-2017 - 16:59 | |
| CVE-2016-7407 | 10.0 |
The dropbearconvert command in Dropbear SSH before 2016.74 allows attackers to execute arbitrary code via a crafted OpenSSH key file.
|
04-03-2017 - 22:55 | 03-03-2017 - 16:59 |