| Max CVSS | 7.5 | Min CVSS | 4.3 | Total Count | 2 |
| ID | CVSS | Summary | Last (major) update | Published | |
| CVE-2020-14002 | 4.3 |
PuTTY 0.68 through 0.73 has an Observable Discrepancy leading to an information leak in the algorithm negotiation. This allows man-in-the-middle attackers to target initial connection attempts (where no host key for the server has been cached by the
|
25-04-2024 - 22:15 | 29-06-2020 - 18:15 | |
| CVE-2019-9896 | 4.6 |
In PuTTY versions before 0.71 on Windows, local attackers could hijack the application by putting a malicious help file in the same directory as the executable.
|
05-04-2022 - 20:13 | 21-03-2019 - 16:01 | |
| CVE-2019-9898 | 7.5 |
Potential recycling of random numbers used in cryptography exists within PuTTY before 0.71.
|
21-07-2021 - 11:39 | 21-03-2019 - 16:01 | |
| CVE-2019-9897 | 5.0 |
Multiple denial-of-service attacks that can be triggered by writing to the terminal exist in PuTTY versions before 0.71.
|
21-07-2021 - 11:39 | 21-03-2019 - 16:01 | |
| CVE-2019-9894 | 6.4 |
A remotely triggerable memory overwrite in RSA key exchange in PuTTY before 0.71 can occur before host key verification.
|
26-04-2019 - 15:43 | 21-03-2019 - 16:01 | |
| CVE-2019-9895 | 7.5 |
In PuTTY versions before 0.71 on Unix, a remotely triggerable buffer overflow exists in any kind of server-to-client forwarding.
|
05-04-2019 - 05:29 | 21-03-2019 - 16:01 |