Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
N/A
Vulnerability Description
SSH Tectia Client/Server/Connector 5.1.0 and earlier, Manager 2.2.0 and earlier, and other products, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents Tectia from correctly verifying X.509 and other certificates that use PKCS #1, a similar issue to CVE-2006-4339.
CVSS Information
N/A
Vulnerability Type
N/A
Vulnerability Title
多款SSH Communications Security产品安全漏洞
Vulnerability Description
多款SSH Communications Security产品中存在安全漏洞。攻击者可利用该漏洞伪造PKCS #1 v1.5签名,绕过安全限制,获取未授权的访问权限。以下产品及版本受到影响:SSH Tectia Client 5.1.0及之前版本;SSH Tectia Server 5.1.0及之前版本;SSH Tectia Connector 5.1.0及之前版本;SSH Tectia Manager 2.2.0及之前版本。
CVSS Information
N/A
Vulnerability Type
N/A