Sshpk
1 CVEs
product
Monthly
sshpk is vulnerable to ReDoS when parsing crafted invalid public keys. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Denial Of Service
Sshpk
NVD
CVSS 3.1
7.5
EPSS
1.7%
CVE-2018-3737
npm
EPSS 2%
CVSS 7.5
HIGH
POC
PATCH
This Week
sshpk is vulnerable to ReDoS when parsing crafted invalid public keys. Rated high severity (CVSS 7.5), this vulnerability is remotely exploitable, no authentication required, low attack complexity. Public exploit code available and no vendor patch available.
Denial Of Service
Sshpk
NVD