CVEDB API

Vulnerabilities

By Date
Known Exploited
Advanced Search

Vulnerable Software

Vendors
Products

Jcraft: Security Vulnerabilities

CVE-2016-5725

Directory traversal vulnerability in JCraft JSch before 0.1.54 on Windows, when the mode is ChannelSftp.OVERWRITE, allows remote SFTP servers to write to arbitrary files via a ..\ (dot dot backslash) in a response to a recursive GET command.

CVSS Score

5.9

EPSS Score

0.322

Published

2017-01-19

CVE-2002-2102

InfBlocks.java in JCraft JZlib before 0.0.7 allow remote attackers to cause a denial of service (NullPointerException) via an invalid block of deflated data.

CVSS Score

5.0

EPSS Score

0.007

Published

2002-12-31

Page 1

Vulnerabilities

Vulnerable Software

Jcraft: Security Vulnerabilities

Products

Pricing

Contact Us