The server in Dropbear prior to 2017.75 might allow post-authentication root remote code execution because of a double free in cleanup of TCP listeners when the -a option is enabled.
Vulnerable Product | Search on Vulmon | Subscribe to Product |
---|---|---|
dropbear ssh project dropbear ssh |
||
debian debian linux 8.0 |
||
netapp h410c_firmware - |