QwikSec

Security Database

CVE

CWE

Training

CVE-2019-14889

Published: Dec 10, 2019

Modified: Aug 5, 2024

PUBLISHED

CVSS v3.0

7.1

HIGH

Description

A flaw was found with the libssh API function ssh_scp_new() in versions before 0.9.3 and before 0.8.8. When the libssh SCP client connects to a server, the scp command, which includes a user-provided path, is executed on the server-side. In case the library is used in a way where users can influence the third parameter of the function, it would become possible for an attacker to inject arbitrary commands, leading to a compromise of the remote target.

Vendor	Product	Versions
Red Hat	libssh	affected `All libssh versions before 0.9.3` affected `All libssh versions before 0.8.8`

Weaknesses (CWE)

CVSS v3.0 Details

CVSS v3.0 Vector

CVSS:3.0/AV:N/AC:H/PR:L/UI:R/S:U/C:H/I:H/A:H

Attack Vector

Network

Attack Complexity

High

Privileges Required

Low

User Interaction

Required

Scope

Unchanged

Confidentiality

High

Integrity

High

Availability

High

References

vendor-advisory

openSUSE-SU-2019:2689

vendor-advisory

[debian-lts-announce] 20191217 [SECURITY] [DLA 2038-1] libssh security update

mailing-list

FEDORA-2019-8b0ad69829

vendor-advisory

FEDORA-2019-46b6bd2459

vendor-advisory

openSUSE-SU-2020:0102

vendor-advisory

vendor-advisory

https://www.oracle.com/security-alerts/cpuapr2020.html

https://bugzilla.redhat.com/show_bug.cgi?id=CVE-2019-14889

https://www.libssh.org/security/advisories/CVE-2019-14889.txt

[debian-lts-announce] 20230529 [SECURITY] [DLA 3437-1] libssh security update

mailing-list

Security Training

Train your team to recognize and prevent security threats with our comprehensive security awareness program.

Vulnerability Scanning

Discover vulnerabilities in your applications and infrastructure before attackers do.