Vulnerabilities (CVE)

Filtered by vendor Jcraft Subscribe
Total 2 CVE
CVE Vendors Products Updated CVSS v2 CVSS v3
CVE-2016-5725 2 Jcraft, Microsoft 2 Jsch, Windows 2024-11-21 4.3 MEDIUM 5.9 MEDIUM
Directory traversal vulnerability in JCraft JSch before 0.1.54 on Windows, when the mode is ChannelSftp.OVERWRITE, allows remote SFTP servers to write to arbitrary files via a ..\ (dot dot backslash) in a response to a recursive GET command.
CVE-2002-2102 1 Jcraft 1 Jzlib 2024-11-20 5.0 MEDIUM N/A
InfBlocks.java in JCraft JZlib before 0.0.7 allow remote attackers to cause a denial of service (NullPointerException) via an invalid block of deflated data.