Skip to main content
CVE-2016-3115 MEDIUM POC THREAT This Month

Multiple CRLF injection vulnerabilities in session.c in sshd in OpenSSH before 7.2p2 allow remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data,. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 47.1%.

SSH Authentication Bypass
NVD GitHub Exploit-DB VulDB
CVSS 3.1
6.4
EPSS
47.1%
Threat
4.2
CVE-2016-3116 MEDIUM POC THREAT This Month

CRLF injection vulnerability in Dropbear SSH before 2016.72 allows remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data. Rated medium severity (CVSS 6.4), this vulnerability is remotely exploitable, low attack complexity. Public exploit code available and EPSS exploitation probability 27.6%.

Authentication Bypass Dropbear Ssh
NVD GitHub Exploit-DB
CVSS 3.0
6.4
EPSS
27.6%

This site uses cookies essential for authentication and security. No tracking or analytics cookies are used. Privacy Policy