Vulnerability Information
Although we use advanced large model technology, its output may still contain inaccurate or outdated information.Shenlong tries to ensure data accuracy, but please verify and judge based on the actual situation.
Vulnerability Title
ewxrjk sftpserver parse.c sftp_parse_path uninitialized pointer
Vulnerability Description
A vulnerability was found in ewxrjk sftpserver. It has been declared as problematic. Affected by this vulnerability is the function sftp_parse_path of the file parse.c. The manipulation leads to uninitialized pointer. The real existence of this vulnerability is still doubted at the moment. The name of the patch is bf4032f34832ee11d79aa60a226cc018e7ec5eed. It is recommended to apply a patch to fix this issue. The identifier VDB-216205 was assigned to this vulnerability. NOTE: In some deployment models this would be a vulnerability. README specifically warns about avoiding such deployment models.
CVSS Information
CVSS:3.1/AV:A/AC:H/PR:L/UI:N/S:U/C:L/I:L/A:L
Vulnerability Type
对未经初始化资源的使用
Vulnerability Title
Green End SFTP Server 安全漏洞
Vulnerability Description
Green End SFTP Server是Richard Kettlewell个人开发者的一个支持协议版本 6 的 SFTP 服务器。 Green End SFTP Server 存在安全漏洞,该漏洞源于其parse.c文件的sftp_parse_path函数导致指针未初始化。
CVSS Information
N/A
Vulnerability Type
N/A