Ssh Tectia Client vulnerabilities

7 known vulnerabilities affecting ssh/tectia_client.

Total CVEs
7
CISA KEV
0
Public exploits
0
Exploited in wild
0
Severity breakdown
HIGH5MEDIUM1LOW1

Vulnerabilities

Page 1 of 1
CVE-2021-27892HIGHCVSS 7.8fixed in 6.4.192021-03-15
CVE-2021-27892 [HIGH] CVE-2021-27892: SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation. ConnectSecur SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation. ConnectSecure on Windows is affected.
nvd
CVE-2021-27891HIGHCVSS 8.8fixed in 6.4.192021-03-15
CVE-2021-27891 [HIGH] CVE-2021-27891: SSH Tectia Client and Server before 6.4.19 on Windows have weak key generation. ConnectSecure on Win SSH Tectia Client and Server before 6.4.19 on Windows have weak key generation. ConnectSecure on Windows is affected.
nvd
CVE-2021-27893HIGHCVSS 7.0fixed in 6.4.192021-03-15
CVE-2021-27893 [HIGH] CVE-2021-27893: SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation in nonstandar SSH Tectia Client and Server before 6.4.19 on Windows allow local privilege escalation in nonstandard conditions. ConnectSecure on Windows is affected.
nvd
CVE-2008-5161LOWCVSS 2.6v4.0v4.0.1+58 more2008-11-19
CVE-2008-5161 [LOW] CWE-200 CVE-2008-5161: Error handling in the SSH protocol in (1) SSH Tectia Client and Server and Connector 4.0 through 4.4 Error handling in the SSH protocol in (1) SSH Tectia Client and Server and Connector 4.0 through 4.4.11, 5.0 through 5.2.4, and 5.3 through 5.3.8; Client and Server and ConnectSecure 6.0 through 6.0.4; Server for Linux on IBM System z 6.0.4; Server for IBM z/OS 5.5.1 and earlier, 6.0.0, and 6.0.1; and Client 4.0-J through 4.3.3-J and 4.0-K through 4.3.10
nvd
CVE-2007-5616HIGHCVSS 7.2≥ 5.0.0, < 5.2.4≥ 5.3.0, < 5.3.62008-01-09
CVE-2007-5616 [HIGH] CVE-2007-5616: ssh-signer in SSH Tectia Client and Server 5.x before 5.2.4, and 5.3.x before 5.3.6, on Unix and Lin ssh-signer in SSH Tectia Client and Server 5.x before 5.2.4, and 5.3.x before 5.3.6, on Unix and Linux allows local users to gain privileges via unspecified vectors.
nvd
CVE-2006-5484MEDIUMCVSS 5.0≤ 5.1.02006-10-24
CVE-2006-5484 [MEDIUM] CVE-2006-5484: SSH Tectia Client/Server/Connector 5.1.0 and earlier, Manager 2.2.0 and earlier, and other products, SSH Tectia Client/Server/Connector 5.1.0 and earlier, Manager 2.2.0 and earlier, and other products, when using an RSA key with exponent 3, removes PKCS-1 padding before generating a hash, which allows remote attackers to forge a PKCS #1 v1.5 signature that is signed by that RSA key and prevents Tectia from correctly verifying X.509 and other certificates tha
nvd
CVE-2006-4315HIGHCVSS 7.2v4.0v4.0.1+23 more2006-08-23
CVE-2006-4315 [HIGH] CVE-2006-4315: Unquoted Windows search path vulnerability in multiple SSH Tectia products, including Client/Server/ Unquoted Windows search path vulnerability in multiple SSH Tectia products, including Client/Server/Connector 5.0.0 and 5.0.1 and Client/Server before 4.4.5, and Manager 2.12 and earlier, when running on Windows, might allow local users to gain privileges via a malicious program file under "Program Files" or its subdirectories.
nvd