182.163.58.22
{
"scan_id": 1747899065,
"ip": "182.163.58.22",
"is_ipv4": true,
"is_ipv6": false,
"location": {
"network": "182.163.56.0/21",
"postal_code": "649-6621",
"coordinates": {
"latitude": "34.2648",
"longitude": "135.4323"
},
"geo_point": "34.2648, 135.4323",
"locale_code": "en",
"continent": "Asia",
"country_code": "JP",
"country_name": "Japan",
"city": "Kinokawa"
},
"location_updated_at": "2025-05-24T00:42:00Z",
"asn": {
"number": "AS10013",
"organization": "FreeBit Co.,Ltd.",
"country_code": ""
},
"asn_updated_at": "0001-01-01T00:00:00Z",
"whois": {
"network": "182.163.48.0/20",
"organization": "FreeBit Co., Ltd.",
"descr": "FreeBit Co., Ltd.,\n13F E.Space Tower 3-6 Maruyama-cho,,\nShibuya-ku,Tokyo,Japan",
"_encoding": {
"raw": "BASE64"
}
},
"whois_updated_at": "2024-12-09T19:04:38Z",
"tags": [
{
"name": "is_anonymous_proxy",
"pretty_name": "Anonymous Proxy",
"value": false,
"last_updated_at": "2025-05-24T00:42:00Z"
},
{
"name": "is_cdn",
"pretty_name": "CDN",
"value": false,
"last_updated_at": "2025-05-24T07:25:08Z"
},
{
"name": "is_satellite_provider",
"pretty_name": "Satellite Provider",
"value": false,
"last_updated_at": "2025-05-24T00:42:00Z"
}
],
"hostnames": [
{
"name": "v-182-163-58-22.ub-freebit.net",
"last_updated_at": "2025-05-25T12:20:48.548494856Z"
}
],
"services": [
{
"port": 21,
"protocol": "tcp",
"name": "ftp",
"version": "1.3.5",
"product": "ProFTPD",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:proftpd:proftpd:1.3.5",
"part": "a",
"vendor": "proftpd",
"product": "proftpd",
"version": "1\\.3\\.5",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"ftp": {
"banner": "220 ProFTPD 1.3.5 Server (ProFTPD server) [182.163.58.22]\r\n"
}
},
"cve": [
{
"id": "CVE-2015-3306",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2019-12815",
"score": 9.8,
"severity": "critical"
},
{
"id": "CVE-2019-18217",
"score": 7.5,
"severity": "high"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-05-25T01:56:33.195Z"
},
{
"port": 25,
"protocol": "tcp",
"name": "smtp",
"version": "",
"product": "Sendmail",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:sendmail:sendmail",
"part": "a",
"vendor": "sendmail",
"product": "sendmail",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smtp": {
"banner": "220 localhost.localdomain ESMTP Sendmail Ready; Fri, 23 May 2025 08:15:08 +0900\r\n"
},
"tls": {
"certificate": {
"fingerprint_md5": "C244C7E4BE1AC4E61922DFB38F4D7868",
"fingerprint_sha1": "4EB05D3125D809B5C89E329075BE302A5319DBD6",
"fingerprint_sha256": "2F8C38078A7597AC64C3BB4E2D3BB4C3D4CB3018F920FE38D56F4974CBF35E21",
"issuer": {
"common_name": [
"localhost.localdomain"
],
"country": [
"JP"
],
"email_address": [
"[email protected]"
],
"locality": [
"minato-ku"
],
"organization": [
"Ai"
],
"organizational_unit": [
"cnet"
],
"province": [
"Tokyo"
]
},
"issuer_dn": "/C=JP/ST=Tokyo/L=minato-ku/O=Ai/OU=cnet/CN=localhost.localdomain/[email protected]",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "10134254932988828714",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "NDI2Mjk0NDAzOWYxZGI0NmVlODg5MGM1NzBiMTI0OWU1Y2IxNmIzNTcyMmVlNzdlMzJjNzM0MzI4MWQ2NDMyNmFkZDczY2EyZGIzNTAwNzUwNDdhZWQ3ZDc5ODIyM2ZjYzc2MjQ4NWVkZWFiYWRkYzI2ZmMwY2U3M2IzMmQyM2Q1ODczYzBjODFmYmI5ZmY1N2EzNzliM2YyOTE2ZDY2MmYxMzYxMTk1NjA3OGM0ZTljNWQ3NmM4MDNiZTYzNDEwYTJkY2Q3MDJhNTMzZGY1ZTIxZDRhNTBkN2ZjODUxNDJhMGQ5NWYxNzRjMWFmOWNlM2NlZThiNDcyY2ViYmRhMA=="
},
"subject": {
"common_name": [
"localhost.localdomain"
],
"country": [
"JP"
],
"email_address": [
"[email protected]"
],
"locality": [
"minato-ku"
],
"organization": [
"Ai"
],
"organizational_unit": [
"cnet"
],
"province": [
"Tokyo"
]
},
"subject_alt_name": {
"dns_names": [
"localhost.localdomain"
],
"extended_dns_names": []
},
"subject_dn": "/C=JP/ST=Tokyo/L=minato-ku/O=Ai/OU=cnet/CN=localhost.localdomain/[email protected]",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "1683384c44ab0909e1e7cf31c0247935c53fc1445679d51f5270b4b44c144032",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 1024,
"modulus": "MHhhZGZkN2Q4N2NlMDliMDkxODkzNWI4ZjAzYjFkNDRlMTcxOWFjZjQzNjBmZjM2YjNlMGJkNDU4ZDBkMTI3ZTFlMTI0YWRiODg0ZjA4YTI4ZmU0OTA2ODI1NjRmZDM3N2E2MWE3YmNlNzAwZTI1Y2FhMDk3MmFjMGVjOTA2ZDg2NTM4NGI5YzRlMjhiN2YwNTYzMmIxYjAwNzIxNWNhNjZmYmVjOTVkZWY3ZWY2YmE2NWFhZDc0NGVmYjA4OGNkZjQxOWU4MjFjOTA2MDJjYmI3YWFkNjRhMmFkYzAyYjI3NWFjZDkyMDIxODYyMDQ4NTBiM2UzMmJmYjFlMTU3MDA1"
}
},
"tbs_fingerprint": "de6e9fe22466163bd7189187f383d3a85749d781b9f538e2bf2f4cdab8622c24",
"validation_level": "OV",
"validity": {
"length_seconds": 31536000,
"not_after": "2019-02-15T06:59:58",
"not_before": "2018-02-15T06:59:58"
}
},
"fingerprint_sha256": "2F8C38078A7597AC64C3BB4E2D3BB4C3D4CB3018F920FE38D56F4974CBF35E21",
"precert": false,
"raw": "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",
"tags": [
"ov",
"self_signed",
"root"
]
}
},
"cve": [
{
"id": "CVE-1999-0478",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1309",
"score": 7.2,
"severity": "high"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-05-22T23:15:16.344Z"
},
{
"port": 80,
"protocol": "tcp",
"name": "http",
"version": "",
"product": "Apache httpd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:apache:http_server",
"part": "a",
"vendor": "apache",
"product": "http_server",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"http": {
"body": "<HTML>\n<HEAD>\n<META HTTP-EQUIV=\"expires\" CONTENT=\"-1\">\n<META HTTP-EQUIV=\"Pragma\" CONTENT=\"no-cache\">\n</HEAD>\n<BODY onLoad=\"location='http://'+location.host+':444/'\">\n</BODY>\n</HTML>\n",
"body_murmur": -1020438196,
"body_sha256": "172047fb8ec1ace3b3566fe090610e67dd6c765658ea83852f07724049e80434",
"component": [
"Apache HTTP Server"
],
"content_length": 182,
"headers": {
"accept_ranges": [
"bytes"
],
"content_length": [
"182"
],
"content_type": [
"text/html"
],
"date": [
"Fri, 23 May 2025 15:19:48 GMT"
],
"etag": [
"\"15e5808c-b6-84873e00\""
],
"last_modified": [
"Wed, 05 Feb 2014 16:47:52 GMT"
],
"server": [
"Apache"
]
},
"protocol": "HTTP/1.1",
"request": {
"headers": {
"accept": [
"*/*"
],
"user_agent": [
"Mozilla/5.0 (compatible; Odin; https://docs.getodin.com/)"
]
},
"method": "GET",
"url": {
"host": "182.163.58.22",
"path": "",
"scheme": "http"
}
},
"status_code": 200
}
},
"cve": [
{
"id": "CVE-1999-0070",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1199",
"score": 10,
"severity": "high"
},
{
"id": "CVE-2023-25690",
"score": 9.8,
"severity": "critical"
}
],
"url": "http://182.163.58.22/",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-05-23T15:19:48.905Z"
},
{
"port": 110,
"protocol": "tcp",
"name": "pop3",
"version": "",
"product": "Dovecot pop3d",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"pop3": {
"banner": "+OK Dovecot ready.\r\n"
},
"tls": {
"certificate": {
"fingerprint_md5": "C244C7E4BE1AC4E61922DFB38F4D7868",
"fingerprint_sha1": "4EB05D3125D809B5C89E329075BE302A5319DBD6",
"fingerprint_sha256": "2F8C38078A7597AC64C3BB4E2D3BB4C3D4CB3018F920FE38D56F4974CBF35E21",
"issuer": {
"common_name": [
"localhost.localdomain"
],
"country": [
"JP"
],
"email_address": [
"[email protected]"
],
"locality": [
"minato-ku"
],
"organization": [
"Ai"
],
"organizational_unit": [
"cnet"
],
"province": [
"Tokyo"
]
},
"issuer_dn": "/C=JP/ST=Tokyo/L=minato-ku/O=Ai/OU=cnet/CN=localhost.localdomain/[email protected]",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "10134254932988828714",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "NDI2Mjk0NDAzOWYxZGI0NmVlODg5MGM1NzBiMTI0OWU1Y2IxNmIzNTcyMmVlNzdlMzJjNzM0MzI4MWQ2NDMyNmFkZDczY2EyZGIzNTAwNzUwNDdhZWQ3ZDc5ODIyM2ZjYzc2MjQ4NWVkZWFiYWRkYzI2ZmMwY2U3M2IzMmQyM2Q1ODczYzBjODFmYmI5ZmY1N2EzNzliM2YyOTE2ZDY2MmYxMzYxMTk1NjA3OGM0ZTljNWQ3NmM4MDNiZTYzNDEwYTJkY2Q3MDJhNTMzZGY1ZTIxZDRhNTBkN2ZjODUxNDJhMGQ5NWYxNzRjMWFmOWNlM2NlZThiNDcyY2ViYmRhMA=="
},
"subject": {
"common_name": [
"localhost.localdomain"
],
"country": [
"JP"
],
"email_address": [
"[email protected]"
],
"locality": [
"minato-ku"
],
"organization": [
"Ai"
],
"organizational_unit": [
"cnet"
],
"province": [
"Tokyo"
]
},
"subject_alt_name": {
"dns_names": [
"localhost.localdomain"
],
"extended_dns_names": []
},
"subject_dn": "/C=JP/ST=Tokyo/L=minato-ku/O=Ai/OU=cnet/CN=localhost.localdomain/[email protected]",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "1683384c44ab0909e1e7cf31c0247935c53fc1445679d51f5270b4b44c144032",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 1024,
"modulus": "MHhhZGZkN2Q4N2NlMDliMDkxODkzNWI4ZjAzYjFkNDRlMTcxOWFjZjQzNjBmZjM2YjNlMGJkNDU4ZDBkMTI3ZTFlMTI0YWRiODg0ZjA4YTI4ZmU0OTA2ODI1NjRmZDM3N2E2MWE3YmNlNzAwZTI1Y2FhMDk3MmFjMGVjOTA2ZDg2NTM4NGI5YzRlMjhiN2YwNTYzMmIxYjAwNzIxNWNhNjZmYmVjOTVkZWY3ZWY2YmE2NWFhZDc0NGVmYjA4OGNkZjQxOWU4MjFjOTA2MDJjYmI3YWFkNjRhMmFkYzAyYjI3NWFjZDkyMDIxODYyMDQ4NTBiM2UzMmJmYjFlMTU3MDA1"
}
},
"tbs_fingerprint": "de6e9fe22466163bd7189187f383d3a85749d781b9f538e2bf2f4cdab8622c24",
"validation_level": "OV",
"validity": {
"length_seconds": 31536000,
"not_after": "2019-02-15T06:59:58",
"not_before": "2018-02-15T06:59:58"
}
},
"fingerprint_sha256": "2F8C38078A7597AC64C3BB4E2D3BB4C3D4CB3018F920FE38D56F4974CBF35E21",
"precert": false,
"raw": "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",
"tags": [
"ov",
"self_signed",
"root"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-05-24T00:36:12.755Z"
},
{
"port": 143,
"protocol": "tcp",
"name": "imap",
"version": "",
"product": "Dovecot imapd",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:dovecot:dovecot",
"part": "a",
"vendor": "dovecot",
"product": "dovecot",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"imap": {
"banner": "* OK [CAPABILITY IMAP4rev1 LITERAL+ SASL-IR LOGIN-REFERRALS ID ENABLE IDLE STARTTLS AUTH=PLAIN AUTH=LOGIN] Dovecot ready.\r\n"
},
"tls": {
"certificate": {
"fingerprint_md5": "C244C7E4BE1AC4E61922DFB38F4D7868",
"fingerprint_sha1": "4EB05D3125D809B5C89E329075BE302A5319DBD6",
"fingerprint_sha256": "2F8C38078A7597AC64C3BB4E2D3BB4C3D4CB3018F920FE38D56F4974CBF35E21",
"issuer": {
"common_name": [
"localhost.localdomain"
],
"country": [
"JP"
],
"email_address": [
"[email protected]"
],
"locality": [
"minato-ku"
],
"organization": [
"Ai"
],
"organizational_unit": [
"cnet"
],
"province": [
"Tokyo"
]
},
"issuer_dn": "/C=JP/ST=Tokyo/L=minato-ku/O=Ai/OU=cnet/CN=localhost.localdomain/[email protected]",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "10134254932988828714",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "NDI2Mjk0NDAzOWYxZGI0NmVlODg5MGM1NzBiMTI0OWU1Y2IxNmIzNTcyMmVlNzdlMzJjNzM0MzI4MWQ2NDMyNmFkZDczY2EyZGIzNTAwNzUwNDdhZWQ3ZDc5ODIyM2ZjYzc2MjQ4NWVkZWFiYWRkYzI2ZmMwY2U3M2IzMmQyM2Q1ODczYzBjODFmYmI5ZmY1N2EzNzliM2YyOTE2ZDY2MmYxMzYxMTk1NjA3OGM0ZTljNWQ3NmM4MDNiZTYzNDEwYTJkY2Q3MDJhNTMzZGY1ZTIxZDRhNTBkN2ZjODUxNDJhMGQ5NWYxNzRjMWFmOWNlM2NlZThiNDcyY2ViYmRhMA=="
},
"subject": {
"common_name": [
"localhost.localdomain"
],
"country": [
"JP"
],
"email_address": [
"[email protected]"
],
"locality": [
"minato-ku"
],
"organization": [
"Ai"
],
"organizational_unit": [
"cnet"
],
"province": [
"Tokyo"
]
},
"subject_alt_name": {
"dns_names": [
"localhost.localdomain"
],
"extended_dns_names": []
},
"subject_dn": "/C=JP/ST=Tokyo/L=minato-ku/O=Ai/OU=cnet/CN=localhost.localdomain/[email protected]",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "1683384c44ab0909e1e7cf31c0247935c53fc1445679d51f5270b4b44c144032",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 1024,
"modulus": "MHhhZGZkN2Q4N2NlMDliMDkxODkzNWI4ZjAzYjFkNDRlMTcxOWFjZjQzNjBmZjM2YjNlMGJkNDU4ZDBkMTI3ZTFlMTI0YWRiODg0ZjA4YTI4ZmU0OTA2ODI1NjRmZDM3N2E2MWE3YmNlNzAwZTI1Y2FhMDk3MmFjMGVjOTA2ZDg2NTM4NGI5YzRlMjhiN2YwNTYzMmIxYjAwNzIxNWNhNjZmYmVjOTVkZWY3ZWY2YmE2NWFhZDc0NGVmYjA4OGNkZjQxOWU4MjFjOTA2MDJjYmI3YWFkNjRhMmFkYzAyYjI3NWFjZDkyMDIxODYyMDQ4NTBiM2UzMmJmYjFlMTU3MDA1"
}
},
"tbs_fingerprint": "de6e9fe22466163bd7189187f383d3a85749d781b9f538e2bf2f4cdab8622c24",
"validation_level": "OV",
"validity": {
"length_seconds": 31536000,
"not_after": "2019-02-15T06:59:58",
"not_before": "2018-02-15T06:59:58"
}
},
"fingerprint_sha256": "2F8C38078A7597AC64C3BB4E2D3BB4C3D4CB3018F920FE38D56F4974CBF35E21",
"precert": false,
"raw": "MIICjTCCAfYCCQCMpBsrAAycKjANBgkqhkiG9w0BAQsFADCBijELMAkGA1UEBhMCSlAxDjAMBgNVBAgTBVRva3lvMRIwEAYDVQQHEwltaW5hdG8ta3UxCzAJBgNVBAoTAkFpMQ0wCwYDVQQLEwRjbmV0MR4wHAYDVQQDExVsb2NhbGhvc3QubG9jYWxkb21haW4xGzAZBgkqhkiG9w0BCQEWDGNuZXRAaG9nZS5qcDAeFw0xODAyMTUwNjU5NThaFw0xOTAyMTUwNjU5NThaMIGKMQswCQYDVQQGEwJKUDEOMAwGA1UECBMFVG9reW8xEjAQBgNVBAcTCW1pbmF0by1rdTELMAkGA1UEChMCQWkxDTALBgNVBAsTBGNuZXQxHjAcBgNVBAMTFWxvY2FsaG9zdC5sb2NhbGRvbWFpbjEbMBkGCSqGSIb3DQEJARYMY25ldEBob2dlLmpwMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCt/X2HzgmwkYk1uPA7HUThcZrPQ2D/NrPgvUWNDRJ+HhJK24hPCKKP5JBoJWT9N3php7znAOJcqglyrA7JBthlOEucTii38FYysbAHIVymb77JXe9+9rplqtdE77CIzfQZ6CHJBgLLt6rWSircArJ1rNkgIYYgSFCz4yv7HhVwBQIDAQABMA0GCSqGSIb3DQEBCwUAA4GBAEJilEA58dtG7oiQxXCxJJ5csWs1ci7nfjLHNDKB1kMmrdc8ots1AHUEeu19eYIj/MdiSF7eq63cJvwM5zsy0j1Yc8DIH7uf9Xo3mz8pFtZi8TYRlWB4xOnF12yAO+Y0EKLc1wKlM99eIdSlDX/IUUKg2V8XTBr5zjzui0cs672g",
"tags": [
"ov",
"self_signed",
"root"
]
}
},
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-05-22T10:57:37.943Z"
},
{
"port": 587,
"protocol": "tcp",
"name": "smtp",
"version": "",
"product": "Sendmail",
"extra_info": "",
"tunnel": "",
"softwares": [
{
"uri": "cpe:/a:sendmail:sendmail",
"part": "a",
"vendor": "sendmail",
"product": "sendmail",
"version": "ANY",
"language": "ANY",
"edition": "ANY",
"update": "ANY"
}
],
"modules": {
"smtp": {
"banner": "220 localhost.localdomain ESMTP Sendmail Ready; Sun, 25 May 2025 18:21:59 +0900\r\n"
},
"tls": {
"certificate": {
"fingerprint_md5": "C244C7E4BE1AC4E61922DFB38F4D7868",
"fingerprint_sha1": "4EB05D3125D809B5C89E329075BE302A5319DBD6",
"fingerprint_sha256": "2F8C38078A7597AC64C3BB4E2D3BB4C3D4CB3018F920FE38D56F4974CBF35E21",
"issuer": {
"common_name": [
"localhost.localdomain"
],
"country": [
"JP"
],
"email_address": [
"[email protected]"
],
"locality": [
"minato-ku"
],
"organization": [
"Ai"
],
"organizational_unit": [
"cnet"
],
"province": [
"Tokyo"
]
},
"issuer_dn": "/C=JP/ST=Tokyo/L=minato-ku/O=Ai/OU=cnet/CN=localhost.localdomain/[email protected]",
"jarm": "00000000000000000000000000000000000000000000000000000000000000",
"redacted": false,
"revocation": {
"ocsp": {
"reason": "UNKNOWN",
"revoked": false
}
},
"serial_number": "10134254932988828714",
"signature": {
"algorithm": {
"name": "SHA256-RSA",
"oid": "1.2.840.113549.1.1.11"
},
"self_signed": true,
"value": "NDI2Mjk0NDAzOWYxZGI0NmVlODg5MGM1NzBiMTI0OWU1Y2IxNmIzNTcyMmVlNzdlMzJjNzM0MzI4MWQ2NDMyNmFkZDczY2EyZGIzNTAwNzUwNDdhZWQ3ZDc5ODIyM2ZjYzc2MjQ4NWVkZWFiYWRkYzI2ZmMwY2U3M2IzMmQyM2Q1ODczYzBjODFmYmI5ZmY1N2EzNzliM2YyOTE2ZDY2MmYxMzYxMTk1NjA3OGM0ZTljNWQ3NmM4MDNiZTYzNDEwYTJkY2Q3MDJhNTMzZGY1ZTIxZDRhNTBkN2ZjODUxNDJhMGQ5NWYxNzRjMWFmOWNlM2NlZThiNDcyY2ViYmRhMA=="
},
"subject": {
"common_name": [
"localhost.localdomain"
],
"country": [
"JP"
],
"email_address": [
"[email protected]"
],
"locality": [
"minato-ku"
],
"organization": [
"Ai"
],
"organizational_unit": [
"cnet"
],
"province": [
"Tokyo"
]
},
"subject_alt_name": {
"dns_names": [
"localhost.localdomain"
],
"extended_dns_names": []
},
"subject_dn": "/C=JP/ST=Tokyo/L=minato-ku/O=Ai/OU=cnet/CN=localhost.localdomain/[email protected]",
"subject_key_info": {
"_key": "rsa",
"dh": [],
"dsa": [],
"ecdsa": [],
"fingerprint_sha256": "1683384c44ab0909e1e7cf31c0247935c53fc1445679d51f5270b4b44c144032",
"key_algorithm": "RSA",
"rsa": {
"exponent": 65537,
"length": 1024,
"modulus": "MHhhZGZkN2Q4N2NlMDliMDkxODkzNWI4ZjAzYjFkNDRlMTcxOWFjZjQzNjBmZjM2YjNlMGJkNDU4ZDBkMTI3ZTFlMTI0YWRiODg0ZjA4YTI4ZmU0OTA2ODI1NjRmZDM3N2E2MWE3YmNlNzAwZTI1Y2FhMDk3MmFjMGVjOTA2ZDg2NTM4NGI5YzRlMjhiN2YwNTYzMmIxYjAwNzIxNWNhNjZmYmVjOTVkZWY3ZWY2YmE2NWFhZDc0NGVmYjA4OGNkZjQxOWU4MjFjOTA2MDJjYmI3YWFkNjRhMmFkYzAyYjI3NWFjZDkyMDIxODYyMDQ4NTBiM2UzMmJmYjFlMTU3MDA1"
}
},
"tbs_fingerprint": "de6e9fe22466163bd7189187f383d3a85749d781b9f538e2bf2f4cdab8622c24",
"validation_level": "OV",
"validity": {
"length_seconds": 31536000,
"not_after": "2019-02-15T06:59:58",
"not_before": "2018-02-15T06:59:58"
}
},
"fingerprint_sha256": "2F8C38078A7597AC64C3BB4E2D3BB4C3D4CB3018F920FE38D56F4974CBF35E21",
"precert": false,
"raw": "MIICjTCCAfYCCQCMpBsrAAycKjANBgkqhkiG9w0BAQsFADCBijELMAkGA1UEBhMCSlAxDjAMBgNVBAgTBVRva3lvMRIwEAYDVQQHEwltaW5hdG8ta3UxCzAJBgNVBAoTAkFpMQ0wCwYDVQQLEwRjbmV0MR4wHAYDVQQDExVsb2NhbGhvc3QubG9jYWxkb21haW4xGzAZBgkqhkiG9w0BCQEWDGNuZXRAaG9nZS5qcDAeFw0xODAyMTUwNjU5NThaFw0xOTAyMTUwNjU5NThaMIGKMQswCQYDVQQGEwJKUDEOMAwGA1UECBMFVG9reW8xEjAQBgNVBAcTCW1pbmF0by1rdTELMAkGA1UEChMCQWkxDTALBgNVBAsTBGNuZXQxHjAcBgNVBAMTFWxvY2FsaG9zdC5sb2NhbGRvbWFpbjEbMBkGCSqGSIb3DQEJARYMY25ldEBob2dlLmpwMIGfMA0GCSqGSIb3DQEBAQUAA4GNADCBiQKBgQCt/X2HzgmwkYk1uPA7HUThcZrPQ2D/NrPgvUWNDRJ+HhJK24hPCKKP5JBoJWT9N3php7znAOJcqglyrA7JBthlOEucTii38FYysbAHIVymb77JXe9+9rplqtdE77CIzfQZ6CHJBgLLt6rWSircArJ1rNkgIYYgSFCz4yv7HhVwBQIDAQABMA0GCSqGSIb3DQEBCwUAA4GBAEJilEA58dtG7oiQxXCxJJ5csWs1ci7nfjLHNDKB1kMmrdc8ots1AHUEeu19eYIj/MdiSF7eq63cJvwM5zsy0j1Yc8DIH7uf9Xo3mz8pFtZi8TYRlWB4xOnF12yAO+Y0EKLc1wKlM99eIdSlDX/IUUKg2V8XTBr5zjzui0cs672g",
"tags": [
"ov",
"self_signed",
"root"
]
}
},
"cve": [
{
"id": "CVE-1999-0478",
"score": 5,
"severity": "medium"
},
{
"id": "CVE-1999-1309",
"score": 7.2,
"severity": "high"
}
],
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-05-25T11:54:07.923Z"
},
{
"port": 993,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-05-24T10:44:35.344Z"
},
{
"port": 995,
"protocol": "tcp",
"name": "unknown",
"version": "",
"product": "",
"extra_info": "",
"tunnel": "",
"_meta": {
"name": "",
"desc": "",
"category": ""
},
"last_updated_at": "2025-05-18T12:24:48.054Z"
}
],
"services_hash": "8b0627197f879263499460771834ccfcd9d770aeefdbd4fcb0b5afb7ce82aade",
"last_updated_at": "2025-05-25T11:54:07.923Z",
"banner": [
"ftp",
"smtp",
"tls",
"http",
"pop3",
"imap"
],
"is_vuln": true,
"cveDetails": {
"CVE-1999-0070": {
"id": "CVE-1999-0070",
"references": [
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rc5d27fc1e76dc5650e1a3f1db1de403120f4c2d041cb7352850455c2%40%3Cusers.httpd.apache.org%3E"
],
"score": 5,
"services": [
"80/http"
],
"severity": "medium",
"summary": "test-cgi program allows an attacker to list files on the server.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:P/A:N",
"weakness": "NVD-CWE-noinfo"
},
"CVE-1999-0478": {
"id": "CVE-1999-0478",
"references": [
"http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9904-097",
"http://www1.itrc.hp.com/service/cki/docDisplay.do?docId=HPSBUX9904-097"
],
"score": 5,
"services": [
"25/smtp"
],
"severity": "medium",
"summary": "Denial of service in HP-UX sendmail 8.8.6 related to accepting connections.",
"vector_string": "AV:N/AC:L/Au:N/C:N/I:N/A:P",
"weakness": "NVD-CWE-Other"
},
"CVE-1999-1199": {
"id": "CVE-1999-1199",
"references": [
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E",
"http://marc.info/?l=bugtraq&m=90252779826784&w=2",
"http://marc.info/?l=bugtraq&m=90276683825862&w=2",
"http://marc.info/?l=bugtraq&m=90280517007869&w=2",
"http://marc.info/?l=bugtraq&m=90286768232093&w=2",
"http://www.redhat.com/support/errata/rh51-errata-general.html#apache",
"https://lists.apache.org/thread.html/r5419c9ba0951ef73a655362403d12bb8d10fab38274deb3f005816f5%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/r9f93cf6dde308d42a9c807784e8102600d0397f5f834890708bf6920%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf2f0f3611f937cf6cfb3b4fe4a67f69885855126110e1e3f2fb2728e%40%3Ccvs.httpd.apache.org%3E",
"https://lists.apache.org/thread.html/rf6449464fd8b7437704c55f88361b66f12d5b5f90bcce66af4be4ba9%40%3Ccvs.httpd.apache.org%3E"
],
"score": 10,
"services": [
"80/http"
],
"severity": "high",
"summary": "Apache WWW server 1.3.1 and earlier allows remote attackers to cause a denial of service (resource exhaustion) via a large number of MIME headers with the same name, aka the \"sioux\" vulnerability.",
"vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "NVD-CWE-Other"
},
"CVE-1999-1309": {
"id": "CVE-1999-1309",
"references": [
"http://www.cert.org/advisories/CA-94.12.sendmail.vulnerabilities",
"http://www.dataguard.no/bugtraq/1994_1/0040.html",
"http://www.dataguard.no/bugtraq/1994_1/0042.html",
"http://www.dataguard.no/bugtraq/1994_1/0043.html",
"http://www.dataguard.no/bugtraq/1994_1/0048.html",
"http://www.dataguard.no/bugtraq/1994_1/0078.html",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/7155",
"http://www.cert.org/advisories/CA-94.12.sendmail.vulnerabilities",
"http://www.dataguard.no/bugtraq/1994_1/0040.html",
"http://www.dataguard.no/bugtraq/1994_1/0042.html",
"http://www.dataguard.no/bugtraq/1994_1/0043.html",
"http://www.dataguard.no/bugtraq/1994_1/0048.html",
"http://www.dataguard.no/bugtraq/1994_1/0078.html",
"https://exchange.xforce.ibmcloud.com/vulnerabilities/7155"
],
"score": 7.2,
"services": [
"25/smtp"
],
"severity": "high",
"summary": "Sendmail before 8.6.7 allows local users to gain root access via a large value in the debug (-d) command line option.",
"vector_string": "AV:L/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "NVD-CWE-Other"
},
"CVE-2015-3306": {
"id": "CVE-2015-3306",
"references": [
"http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157053.html",
"http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157054.html",
"http://lists.fedoraproject.org/pipermail/package-announce/2015-May/157581.html",
"http://lists.opensuse.org/opensuse-updates/2015-06/msg00020.html",
"http://packetstormsecurity.com/files/131505/ProFTPd-1.3.5-File-Copy.html",
"http://packetstormsecurity.com/files/131555/ProFTPd-1.3.5-Remote-Command-Execution.html",
"http://packetstormsecurity.com/files/131567/ProFTPd-CPFR-CPTO-Proof-Of-Concept.html",
"http://packetstormsecurity.com/files/132218/ProFTPD-1.3.5-Mod_Copy-Command-Execution.html",
"http://packetstormsecurity.com/files/162777/ProFTPd-1.3.5-Remote-Command-Execution.html",
"http://www.debian.org/security/2015/dsa-3263",
"http://www.rapid7.com/db/modules/exploit/unix/ftp/proftpd_modcopy_exec",
"http://www.securityfocus.com/bid/74238",
"https://www.exploit-db.com/exploits/36742/",
"https://www.exploit-db.com/exploits/36803/"
],
"score": 10,
"services": [
"21/ftp"
],
"severity": "high",
"summary": "The mod_copy module in ProFTPD 1.3.5 allows remote attackers to read and write to arbitrary files via the site cpfr and site cpto commands.",
"vector_string": "AV:N/AC:L/Au:N/C:C/I:C/A:C",
"weakness": "CWE-284"
},
"CVE-2019-12815": {
"id": "CVE-2019-12815",
"references": [
"http://bugs.proftpd.org/show_bug.cgi?id=4372",
"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00004.html",
"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00022.html",
"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00009.html",
"http://www.securityfocus.com/bid/109339",
"https://cert-portal.siemens.com/productcert/pdf/ssa-940889.pdf",
"https://github.com/proftpd/proftpd/pull/816",
"https://lists.debian.org/debian-lts-announce/2019/08/msg00006.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OJDQ3XUYWO42TJBO53NUWDZRA35QMVEI/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XM5FPBAGSIKV6YJZEPM6GPGJO5JFT7XU/",
"https://seclists.org/bugtraq/2019/Aug/3",
"https://security.gentoo.org/glsa/201908-16",
"https://tbspace.de/cve201912815proftpd.html",
"https://www.debian.org/security/2019/dsa-4491",
"http://bugs.proftpd.org/show_bug.cgi?id=4372",
"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00004.html",
"http://lists.opensuse.org/opensuse-security-announce/2019-08/msg00022.html",
"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00009.html",
"http://www.securityfocus.com/bid/109339",
"https://cert-portal.siemens.com/productcert/pdf/ssa-940889.pdf",
"https://github.com/proftpd/proftpd/pull/816",
"https://lists.debian.org/debian-lts-announce/2019/08/msg00006.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OJDQ3XUYWO42TJBO53NUWDZRA35QMVEI/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/XM5FPBAGSIKV6YJZEPM6GPGJO5JFT7XU/",
"https://seclists.org/bugtraq/2019/Aug/3",
"https://security.gentoo.org/glsa/201908-16",
"https://tbspace.de/cve201912815proftpd.html",
"https://www.debian.org/security/2019/dsa-4491"
],
"score": 9.8,
"services": [
"21/ftp"
],
"severity": "critical",
"summary": "An arbitrary file copy vulnerability in mod_copy in ProFTPD up to 1.3.5b allows for remote code execution and information disclosure without authentication, a related issue to CVE-2015-3306.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-755"
},
"CVE-2019-18217": {
"id": "CVE-2019-18217",
"references": [
"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00009.html",
"https://cert-portal.siemens.com/productcert/pdf/ssa-940889.pdf",
"https://github.com/proftpd/proftpd/blob/1.3.6/NEWS",
"https://github.com/proftpd/proftpd/blob/1.3.6/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/NEWS",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/846",
"https://lists.debian.org/debian-lts-announce/2019/10/msg00036.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NJDQRVZTILBX4BUCTIRKP2WBHDHDCJR5/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RB2FPAWDWXT5ALAFIC5Y3RSEMXSFL6H2/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YLRPYEEMQJVAXO2SXRGOQ4HBFEEPCNXG/",
"https://seclists.org/bugtraq/2019/Nov/7",
"https://security.gentoo.org/glsa/202003-35",
"https://www.debian.org/security/2019/dsa-4559",
"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00009.html",
"https://cert-portal.siemens.com/productcert/pdf/ssa-940889.pdf",
"https://github.com/proftpd/proftpd/blob/1.3.6/NEWS",
"https://github.com/proftpd/proftpd/blob/1.3.6/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/NEWS",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/846",
"https://lists.debian.org/debian-lts-announce/2019/10/msg00036.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/NJDQRVZTILBX4BUCTIRKP2WBHDHDCJR5/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/RB2FPAWDWXT5ALAFIC5Y3RSEMXSFL6H2/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/YLRPYEEMQJVAXO2SXRGOQ4HBFEEPCNXG/",
"https://seclists.org/bugtraq/2019/Nov/7",
"https://security.gentoo.org/glsa/202003-35",
"https://www.debian.org/security/2019/dsa-4559"
],
"score": 7.5,
"services": [
"21/ftp"
],
"severity": "high",
"summary": "ProFTPD before 1.3.6b and 1.3.7rc before 1.3.7rc2 allows remote unauthenticated denial-of-service due to incorrect handling of overly long commands because main.c in a child process enters an infinite loop.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"weakness": "CWE-835"
},
"CVE-2019-19269": {
"id": "CVE-2019-19269",
"references": [
"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00009.html",
"https://github.com/proftpd/proftpd/issues/861",
"https://lists.debian.org/debian-lts-announce/2019/11/msg00039.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OGBBCPLJSDPFG5EI5P5G7P4KEX7YSD5G/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QR65XUHPCRU3NXTSFVF2J4GWRIHC7AHW/",
"https://security.gentoo.org/glsa/202003-35",
"https://www.oracle.com/security-alerts/cpuapr2020.html",
"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00009.html",
"https://github.com/proftpd/proftpd/issues/861",
"https://lists.debian.org/debian-lts-announce/2019/11/msg00039.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OGBBCPLJSDPFG5EI5P5G7P4KEX7YSD5G/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QR65XUHPCRU3NXTSFVF2J4GWRIHC7AHW/",
"https://security.gentoo.org/glsa/202003-35",
"https://www.oracle.com/security-alerts/cpuapr2020.html"
],
"score": 4.9,
"services": [
"21/ftp"
],
"severity": "medium",
"summary": "An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. A dereference of a NULL pointer may occur. This pointer is returned by the OpenSSL sk_X509_REVOKED_value() function when encountering an empty CRL installed by a system administrator. The dereference occurs when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:H/UI:N/S:U/C:N/I:N/A:H",
"weakness": "CWE-476"
},
"CVE-2019-19270": {
"id": "CVE-2019-19270",
"references": [
"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00009.html",
"https://github.com/proftpd/proftpd/issues/859",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OGBBCPLJSDPFG5EI5P5G7P4KEX7YSD5G/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QR65XUHPCRU3NXTSFVF2J4GWRIHC7AHW/",
"http://lists.opensuse.org/opensuse-security-announce/2020-01/msg00009.html",
"https://github.com/proftpd/proftpd/issues/859",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/OGBBCPLJSDPFG5EI5P5G7P4KEX7YSD5G/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QR65XUHPCRU3NXTSFVF2J4GWRIHC7AHW/"
],
"score": 7.5,
"services": [
"21/ftp"
],
"severity": "high",
"summary": "An issue was discovered in tls_verify_crl in ProFTPD through 1.3.6b. Failure to check for the appropriate field of a CRL entry (checking twice for subject, rather than once for subject and once for issuer) prevents some valid CRLs from being taken into account, and can allow clients whose certificates have been revoked to proceed with a connection to the server.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-295"
},
"CVE-2019-19271": {
"id": "CVE-2019-19271",
"references": [
"https://github.com/proftpd/proftpd/issues/860",
"https://github.com/proftpd/proftpd/issues/860"
],
"score": 7.5,
"services": [
"21/ftp"
],
"severity": "high",
"summary": "An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. A wrong iteration variable, used when checking a client certificate against CRL entries (installed by a system administrator), can cause some CRL entries to be ignored, and can allow clients whose certificates have been revoked to proceed with a connection to the server.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-295"
},
"CVE-2019-19272": {
"id": "CVE-2019-19272",
"references": [
"https://github.com/proftpd/proftpd/issues/858",
"https://github.com/proftpd/proftpd/issues/858"
],
"score": 7.5,
"services": [
"21/ftp"
],
"severity": "high",
"summary": "An issue was discovered in tls_verify_crl in ProFTPD before 1.3.6. Direct dereference of a NULL pointer (a variable initialized to NULL) leads to a crash when validating the certificate of a client connecting to the server in a TLS client/server mutual-authentication setup.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"weakness": "CWE-476"
},
"CVE-2020-9272": {
"id": "CVE-2020-9272",
"references": [
"http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00002.html",
"https://cert-portal.siemens.com/productcert/pdf/ssa-679335.pdf",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/902",
"https://security.gentoo.org/glsa/202003-35",
"http://lists.opensuse.org/opensuse-security-announce/2020-03/msg00002.html",
"https://cert-portal.siemens.com/productcert/pdf/ssa-679335.pdf",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/902",
"https://security.gentoo.org/glsa/202003-35"
],
"score": 7.5,
"services": [
"21/ftp"
],
"severity": "high",
"summary": "ProFTPD 1.3.7 has an out-of-bounds (OOB) read vulnerability in mod_cap via the cap_text.c cap_to_text function.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"weakness": "CWE-125"
},
"CVE-2021-46854": {
"id": "CVE-2021-46854",
"references": [
"http://www.proftpd.org/docs/RELEASE_NOTES-1.3.7e",
"https://bugs.gentoo.org/811495",
"https://github.com/proftpd/proftpd/issues/1284",
"https://github.com/proftpd/proftpd/pull/1285",
"https://security.gentoo.org/glsa/202305-03",
"http://www.proftpd.org/docs/RELEASE_NOTES-1.3.7e",
"https://bugs.gentoo.org/811495",
"https://github.com/proftpd/proftpd/issues/1284",
"https://github.com/proftpd/proftpd/pull/1285",
"https://security.gentoo.org/glsa/202305-03"
],
"score": 7.5,
"services": [
"21/ftp"
],
"severity": "high",
"summary": "mod_radius in ProFTPD before 1.3.7c allows memory disclosure to RADIUS servers because it copies blocks of 16 characters.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:N/A:N",
"weakness": "CWE-401"
},
"CVE-2023-25690": {
"id": "CVE-2023-25690",
"references": [
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01",
"http://packetstormsecurity.com/files/176334/Apache-2.4.55-mod_proxy-HTTP-Request-Smuggling.html",
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 9.8,
"services": [
"80/http"
],
"severity": "critical",
"summary": "Some mod_proxy configurations on Apache HTTP Server versions 2.4.0 through 2.4.55 allow a HTTP Request Smuggling attack.\n\n\n\n\nConfigurations are affected when mod_proxy is enabled along with some form of RewriteRule\n or ProxyPassMatch in which a non-specific pattern matches\n some portion of the user-supplied request-target (URL) data and is then\n re-inserted into the proxied request-target using variable \nsubstitution. For example, something like:\n\n\n\n\nRewriteEngine on\nRewriteRule \"^/here/(.*)\" \"http://example.com:8080/elsewhere?$1\"; [P]\nProxyPassReverse /here/ http://example.com:8080/\n\n\nRequest splitting/smuggling could result in bypass of access controls in the proxy server, proxying unintended URLs to existing origin servers, and cache poisoning. Users are recommended to update to at least version 2.4.56 of Apache HTTP Server.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:H/I:H/A:H",
"weakness": "CWE-444"
},
"CVE-2023-27522": {
"id": "CVE-2023-27522",
"references": [
"https://httpd.apache.org/security/vulnerabilities_24.html",
"https://lists.debian.org/debian-lts-announce/2023/04/msg00028.html",
"https://security.gentoo.org/glsa/202309-01"
],
"score": 7.5,
"services": [
"80/http"
],
"severity": "high",
"summary": "HTTP Response Smuggling vulnerability in Apache HTTP Server via mod_proxy_uwsgi. This issue affects Apache HTTP Server: from 2.4.30 through 2.4.55.nnSpecial characters in the origin response header can truncate/split the response forwarded to the client.nnn",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-444"
},
"CVE-2023-48795": {
"id": "CVE-2023-48795",
"references": [
"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/18/3",
"http://www.openwall.com/lists/oss-security/2023/12/19/5",
"http://www.openwall.com/lists/oss-security/2023/12/20/3",
"http://www.openwall.com/lists/oss-security/2024/03/06/3",
"http://www.openwall.com/lists/oss-security/2024/04/17/8",
"https://access.redhat.com/security/cve/cve-2023-48795",
"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
"https://bugs.gentoo.org/920280",
"https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
"https://bugzilla.suse.com/show_bug.cgi?id=1217950",
"https://crates.io/crates/thrussh/versions",
"https://filezilla-project.org/versions.php",
"https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
"https://github.com/NixOS/nixpkgs/pull/275249",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
"https://github.com/advisories/GHSA-45x7-px36-x8w8",
"https://github.com/apache/mina-sshd/issues/445",
"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
"https://github.com/cyd01/KiTTY/issues/520",
"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
"https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
"https://github.com/hierynomus/sshj/issues/916",
"https://github.com/janmojzis/tinyssh/issues/81",
"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
"https://github.com/libssh2/libssh2/pull/1291",
"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
"https://github.com/mwiede/jsch/issues/457",
"https://github.com/mwiede/jsch/pull/461",
"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
"https://github.com/openssh/openssh-portable/commits/master",
"https://github.com/paramiko/paramiko/issues/2337",
"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/456",
"https://github.com/rapier1/hpn-ssh/releases",
"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
"https://github.com/ronf/asyncssh/tags",
"https://github.com/ssh-mitm/ssh-mitm/issues/165",
"https://github.com/warp-tech/russh/releases/tag/v0.40.2",
"https://gitlab.com/libssh/libssh-mirror/-/tags",
"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
"https://help.panic.com/releasenotes/transmit5/",
"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
"https://matt.ucc.asn.au/dropbear/CHANGES",
"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
"https://news.ycombinator.com/item?id=38684904",
"https://news.ycombinator.com/item?id=38685286",
"https://news.ycombinator.com/item?id=38732005",
"https://nova.app/releases/#v11.8",
"https://oryx-embedded.com/download/#changelog",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
"https://roumenpetrov.info/secsh/#news20231220",
"https://security-tracker.debian.org/tracker/CVE-2023-48795",
"https://security-tracker.debian.org/tracker/source-package/libssh2",
"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
"https://security.gentoo.org/glsa/202312-16",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0004/",
"https://support.apple.com/kb/HT214084",
"https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
"https://twitter.com/TrueSkrillor/status/1736774389725565005",
"https://ubuntu.com/security/CVE-2023-48795",
"https://winscp.net/eng/docs/history#6.2.2",
"https://www.bitvise.com/ssh-client-version-history#933",
"https://www.bitvise.com/ssh-server-version-history",
"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.debian.org/security/2023/dsa-5588",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
"https://www.netsarang.com/en/xshell-update-history/",
"https://www.openssh.com/openbsd.html",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"https://www.openwall.com/lists/oss-security/2023/12/20/3",
"https://www.paramiko.org/changelog.html",
"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
"https://www.terrapin-attack.com",
"https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
"https://www.vandyke.com/products/securecrt/history.txt",
"http://packetstormsecurity.com/files/176280/Terrapin-SSH-Connection-Weakening.html",
"http://seclists.org/fulldisclosure/2024/Mar/21",
"http://www.openwall.com/lists/oss-security/2023/12/18/3",
"http://www.openwall.com/lists/oss-security/2023/12/19/5",
"http://www.openwall.com/lists/oss-security/2023/12/20/3",
"http://www.openwall.com/lists/oss-security/2024/03/06/3",
"http://www.openwall.com/lists/oss-security/2024/04/17/8",
"https://access.redhat.com/security/cve/cve-2023-48795",
"https://arstechnica.com/security/2023/12/hackers-can-break-ssh-channel-integrity-using-novel-data-corruption-attack/",
"https://bugs.gentoo.org/920280",
"https://bugzilla.redhat.com/show_bug.cgi?id=2254210",
"https://bugzilla.suse.com/show_bug.cgi?id=1217950",
"https://crates.io/crates/thrussh/versions",
"https://filezilla-project.org/versions.php",
"https://forum.netgate.com/topic/184941/terrapin-ssh-attack",
"https://git.libssh.org/projects/libssh.git/commit/?h=stable-0.10&id=10e09e273f69e149389b3e0e5d44b8c221c2e7f6",
"https://github.com/NixOS/nixpkgs/pull/275249",
"https://github.com/PowerShell/Win32-OpenSSH/issues/2189",
"https://github.com/PowerShell/Win32-OpenSSH/releases/tag/v9.5.0.0p1-Beta",
"https://github.com/TeraTermProject/teraterm/commit/7279fbd6ef4d0c8bdd6a90af4ada2899d786eec0",
"https://github.com/TeraTermProject/teraterm/releases/tag/v5.1",
"https://github.com/advisories/GHSA-45x7-px36-x8w8",
"https://github.com/apache/mina-sshd/issues/445",
"https://github.com/connectbot/sshlib/commit/5c8b534f6e97db7ac0e0e579331213aa25c173ab",
"https://github.com/connectbot/sshlib/compare/2.2.21...2.2.22",
"https://github.com/cyd01/KiTTY/issues/520",
"https://github.com/drakkan/sftpgo/releases/tag/v2.5.6",
"https://github.com/erlang/otp/blob/d1b43dc0f1361d2ad67601169e90a7fc50bb0369/lib/ssh/doc/src/notes.xml#L39-L42",
"https://github.com/erlang/otp/releases/tag/OTP-26.2.1",
"https://github.com/golang/crypto/commit/9d2ee975ef9fe627bf0a6f01c1f69e8ef1d4f05d",
"https://github.com/hierynomus/sshj/issues/916",
"https://github.com/janmojzis/tinyssh/issues/81",
"https://github.com/jtesta/ssh-audit/commit/8e972c5e94b460379fe0c7d20209c16df81538a5",
"https://github.com/libssh2/libssh2/pull/1291",
"https://github.com/mkj/dropbear/blob/17657c36cce6df7716d5ff151ec09a665382d5dd/CHANGES#L25",
"https://github.com/mscdex/ssh2/commit/97b223f8891b96d6fc054df5ab1d5a1a545da2a3",
"https://github.com/mwiede/jsch/compare/jsch-0.2.14...jsch-0.2.15",
"https://github.com/mwiede/jsch/issues/457",
"https://github.com/mwiede/jsch/pull/461",
"https://github.com/net-ssh/net-ssh/blob/2e65064a52d73396bfc3806c9196fc8108f33cd8/CHANGES.txt#L14-L16",
"https://github.com/openssh/openssh-portable/commits/master",
"https://github.com/paramiko/paramiko/issues/2337",
"https://github.com/proftpd/proftpd/blob/0a7ea9b0ba9fcdf368374a226370d08f10397d99/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/d21e7a2e47e9b38f709bec58e3fa711f759ad0e1/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/blob/master/RELEASE_NOTES",
"https://github.com/proftpd/proftpd/issues/456",
"https://github.com/rapier1/hpn-ssh/releases",
"https://github.com/ronf/asyncssh/blob/develop/docs/changes.rst",
"https://github.com/ronf/asyncssh/tags",
"https://github.com/ssh-mitm/ssh-mitm/issues/165",
"https://github.com/warp-tech/russh/releases/tag/v0.40.2",
"https://gitlab.com/libssh/libssh-mirror/-/tags",
"https://groups.google.com/g/golang-announce/c/-n5WqVC18LQ",
"https://groups.google.com/g/golang-announce/c/qA3XtxvMUyg",
"https://help.panic.com/releasenotes/transmit5/",
"https://jadaptive.com/important-java-ssh-security-update-new-ssh-vulnerability-discovered-cve-2023-48795/",
"https://lists.debian.org/debian-lts-announce/2023/12/msg00017.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00013.html",
"https://lists.debian.org/debian-lts-announce/2024/01/msg00014.html",
"https://lists.debian.org/debian-lts-announce/2024/04/msg00016.html",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/33XHJUB6ROFUOH2OQNENFROTVH6MHSHA/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3CAYYW35MUTNO65RVAELICTNZZFMT2XS/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3JIMLVBDWOP4FUPXPTB4PGHHIOMGFLQE/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/3YQLUQWLIHDB5QCXQEX7HXHAWMOKPP5O/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/6Y74KVCPEPT4MVU3LHDWCNNOXOE5ZLUR/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/APYIXIQOVDCRWLHTGB4VYMAUIAQLKYJ3/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/BL5KTLOSLH2KHRN4HCXJPK3JUVLDGEL6/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/C3AFMZ6MH2UHHOPIWT5YLSFV3D2VB3AC/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/CHHITS4PUOZAKFIUBQAQZC7JWXMOYE4B/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/F7EYCFQCTSGJXWO3ZZ44MGKFC5HA7G3Y/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/HYEDEXIKFKTUJIN43RG4B7T5ZS6MHUSP/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/I724O3LSRCPO4WNVIXTZCT4VVRMXMMSG/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KEOTKBUPZXHE3F352JBYNTSNRXYLWD6P/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/KMZCVGUGJZZVDPCVDA7TEB22VUCNEXDD/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/L5Y6MNNVAPIJSXJERQ6PKZVCIUXSNJK7/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/LZQVUHWVWRH73YBXUQJOD6CKHDQBU3DM/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/MKQRBF3DWMWPH36LBCOBUTSIZRTPEZXB/",
"https://lists.fedoraproject.org/archives/list/package-announce%40lists.fedoraproject.org/message/QI3EHAHABFQK7OABNCSF5GMYP6TONTI7/",
"https://matt.ucc.asn.au/dropbear/CHANGES",
"https://nest.pijul.com/pijul/thrussh/changes/D6H7OWTTMHHX6BTB3B6MNBOBX2L66CBL4LGSEUSAI2MCRCJDQFRQC",
"https://news.ycombinator.com/item?id=38684904",
"https://news.ycombinator.com/item?id=38685286",
"https://news.ycombinator.com/item?id=38732005",
"https://nova.app/releases/#v11.8",
"https://oryx-embedded.com/download/#changelog",
"https://psirt.global.sonicwall.com/vuln-detail/SNWLID-2024-0002",
"https://roumenpetrov.info/secsh/#news20231220",
"https://security-tracker.debian.org/tracker/CVE-2023-48795",
"https://security-tracker.debian.org/tracker/source-package/libssh2",
"https://security-tracker.debian.org/tracker/source-package/proftpd-dfsg",
"https://security-tracker.debian.org/tracker/source-package/trilead-ssh2",
"https://security.gentoo.org/glsa/202312-16",
"https://security.gentoo.org/glsa/202312-17",
"https://security.netapp.com/advisory/ntap-20240105-0004/",
"https://support.apple.com/kb/HT214084",
"https://thorntech.com/cve-2023-48795-and-sftp-gateway/",
"https://twitter.com/TrueSkrillor/status/1736774389725565005",
"https://ubuntu.com/security/CVE-2023-48795",
"https://winscp.net/eng/docs/history#6.2.2",
"https://www.bitvise.com/ssh-client-version-history#933",
"https://www.bitvise.com/ssh-server-version-history",
"https://www.chiark.greenend.org.uk/~sgtatham/putty/changes.html",
"https://www.crushftp.com/crush10wiki/Wiki.jsp?page=Update",
"https://www.debian.org/security/2023/dsa-5586",
"https://www.debian.org/security/2023/dsa-5588",
"https://www.freebsd.org/security/advisories/FreeBSD-SA-23:19.openssh.asc",
"https://www.lancom-systems.de/service-support/allgemeine-sicherheitshinweise#c243508",
"https://www.netsarang.com/en/xshell-update-history/",
"https://www.openssh.com/openbsd.html",
"https://www.openssh.com/txt/release-9.6",
"https://www.openwall.com/lists/oss-security/2023/12/18/2",
"https://www.openwall.com/lists/oss-security/2023/12/20/3",
"https://www.paramiko.org/changelog.html",
"https://www.reddit.com/r/sysadmin/comments/18idv52/cve202348795_why_is_this_cve_still_undisclosed/",
"https://www.suse.com/c/suse-addresses-the-ssh-v2-protocol-terrapin-attack-aka-cve-2023-48795/",
"https://www.terrapin-attack.com",
"https://www.theregister.com/2023/12/20/terrapin_attack_ssh",
"https://www.vandyke.com/products/securecrt/history.txt",
"https://www.vicarius.io/vsociety/posts/cve-2023-48795-detect-openssh-vulnerabilit",
"https://www.vicarius.io/vsociety/posts/cve-2023-48795-mitigate-openssh-vulnerability"
],
"score": 5.9,
"services": [
"21/ftp"
],
"severity": "medium",
"summary": "The SSH transport protocol with certain OpenSSH extensions, found in OpenSSH before 9.6 and other products, allows remote attackers to bypass integrity checks such that some packets are omitted (from the extension negotiation message), and a client and server may consequently end up with a connection for which some security features have been downgraded or disabled, aka a Terrapin attack. This occurs because the SSH Binary Packet Protocol (BPP), implemented by these extensions, mishandles the handshake phase and mishandles use of sequence numbers. For example, there is an effective attack against SSH's use of ChaCha20-Poly1305 (and CBC with Encrypt-then-MAC). The bypass occurs in [email protected] and (if CBC is used) the [email protected] MAC algorithms. This also affects Maverick Synergy Java SSH API before 3.1.0-SNAPSHOT, Dropbear through 2022.83, Ssh before 5.1.1 in Erlang/OTP, PuTTY before 0.80, AsyncSSH before 2.14.2, golang.org/x/crypto before 0.17.0, libssh before 0.10.6, libssh2 through 1.11.0, Thorn Tech SFTP Gateway before 3.4.6, Tera Term before 5.1, Paramiko before 3.4.0, jsch before 0.2.15, SFTPGo before 2.5.6, Netgate pfSense Plus through 23.09.1, Netgate pfSense CE through 2.7.2, HPN-SSH through 18.2.0, ProFTPD before 1.3.8b (and before 1.3.9rc2), ORYX CycloneSSH before 2.3.4, NetSarang XShell 7 before Build 0144, CrushFTP before 10.6.0, ConnectBot SSH library before 2.2.22, Apache MINA sshd through 2.11.0, sshj through 0.37.0, TinySSH through 20230101, trilead-ssh2 6401, LANCOM LCOS and LANconfig, FileZilla before 3.66.4, Nova before 11.8, PKIX-SSH before 14.4, SecureCRT before 9.4.3, Transmit5 before 5.10.4, Win32-OpenSSH before 9.5.0.0p1-Beta, WinSCP before 6.2.2, Bitvise SSH Server before 9.32, Bitvise SSH Client before 9.33, KiTTY through 0.76.1.13, the net-ssh gem 7.2.0 for Ruby, the mscdex ssh2 module before 1.15.0 for Node.js, the thrussh library before 0.35.1 for Rust, and the Russh crate before 0.40.2 for Rust.",
"vector_string": "CVSS:3.1/AV:N/AC:H/PR:N/UI:N/S:U/C:N/I:H/A:N",
"weakness": "CWE-354"
},
"CVE-2023-51713": {
"id": "CVE-2023-51713",
"references": [
"https://github.com/proftpd/proftpd/blob/1.3.8/NEWS",
"https://github.com/proftpd/proftpd/issues/1683",
"https://github.com/proftpd/proftpd/issues/1683#issuecomment-1712887554",
"https://github.com/proftpd/proftpd/blob/1.3.8/NEWS",
"https://github.com/proftpd/proftpd/issues/1683",
"https://github.com/proftpd/proftpd/issues/1683#issuecomment-1712887554"
],
"score": 7.5,
"services": [
"21/ftp"
],
"severity": "high",
"summary": "make_ftp_cmd in main.c in ProFTPD before 1.3.8a has a one-byte out-of-bounds read, and daemon crash, because of mishandling of quote/backslash semantics.",
"vector_string": "CVSS:3.1/AV:N/AC:L/PR:N/UI:N/S:U/C:N/I:N/A:H",
"weakness": "CWE-125"
}
}
}