cbcvebase.
CVE-2016-3116
published 2016-03-22

CVE-2016-3116: CRLF injection vulnerability in Dropbear SSH before 2016.72 allows remote authenticated users to bypass intended shell-command restrictions via crafted X11…

PriorityP351medium6.4CVSS 3.0
AVNACLPRLUINSCCLILAN
EXPLOIT
EPSS
19.30%
97.0th percentile
CRLF injection vulnerability in Dropbear SSH before 2016.72 allows remote authenticated users to bypass intended shell-command restrictions via crafted X11 forwarding data.

Affected

6 ranges
VendorProductVersion rangeFixed in
debiandropbear< dropbear 2016.72-1 (bookworm)dropbear 2016.72-1 (bookworm)
dropbear_ssh_projectdropbear_ssh<= 2015.71
dropbear_ssh_projectdropbear_ssh>= 0 < 2016.72-12016.72-1
dropbear_ssh_projectdropbear_ssh>= 0 < 2016.72-12016.72-1
dropbear_ssh_projectdropbear_ssh>= 0 < 2016.72-12016.72-1
dropbear_ssh_projectdropbear_ssh>= 0 < 2016.72-12016.72-1

CVSS provenance

nvdv3.06.4MEDIUMCVSS:3.0/AV:N/AC:L/PR:L/UI:N/S:C/C:L/I:L/A:N
nvdv2.05.5MEDIUMAV:N/AC:L/Au:S/C:P/I:P/A:N
osv6.4MEDIUM
vendor_debian6.4MEDIUM
CVEs like this are exactly what “Exploited This Week” covers.

Every Monday: what got weaponized or added to CISA KEV in the last seven days — each CVE cross-linked to its PoC, Nuclei template, and detection rule. Free, one email a week, unsubscribe in one click.